Go back to Blog
xx mins read

Aumni Levels Up in Security Practices, Achieves SOC2 Type II Certification

share on

We are thrilled to announce that Aumni has received its SOC 2 Type II certification – Security and Availability discipline, an exceptional achievement . For those of our customers who don’t speak “cyber security,” we have been verified by an independent third-party auditor that we can be trusted to keep our customers' data safe and our systems highly available as a result of our implementation of foundational security practices and industry leading security solutions. 

Aumni CTO, Rob Wise, had this to say: "From the beginning, Aumni has been committed to rigorous data system quality. Our data comes from the most accurate sources with the most attention to detail. We're protecting that data with the same meticulous approach. Our team of information security experts has been integrating our security approach from the ground floor at Aumni, which is why we were able to achieve a SOC 2 Type II certification so early in our journey."

A bit of background on SOC 2 certifications

Developed by the American Institute of CPAs (AICPA), the standard uses five “trust service principles” – security, availability, processing integrity, confidentiality and privacy – to assess how organizations manage customer data. Issued by outside auditors, SOC 2 Type II is the most comprehensive certification within the Systems and Organization Controls protocol. Receiving this certification attests that Aumni has the infrastructure, systems, tools, and processes in place to keep the data we are entrusted with, and the systems supporting our services, confidential and highly available. 

How Aumni approaches security to reduce risk 

This achievement marks an ongoing journey to protect the confidentiality, availability, and integrity of Aumni systems and data. The Aumni security program is built to reduce risk from threats and vulnerabilities through the implementation of policies such as: 

  • Product security initiatives 
  • Policy governance 
  • Security training
  • Change Management, including SDLC methodology
  • Data protection
  • Vulnerability Management
  • Asset Management
  • Incident Response
  • Business Continuity & Disaster Recovery
  • Logging and Monitoring
  • Vendor Security Management
  • Access Control

We are committed to establish Aumni as a brand that can be trusted. Each year hereafter, we will renew our SOC 2 Type II certification, pursue other certifications, and, most importantly, establish security measures above and beyond compliance requirements. 

If you’d like a copy of our SOC 2 Type II, please contact securitycompliance@aumni.fund.

©2023 JPMorgan Chase & Co. All rights reserved. JPMorgan Chase Bank, N.A. Member FDIC.

This material is not the product of J.P. Morgan’s Research Department. It is not a research report and is not intended as such. This material is provided for informational purposes only and is subject to change without notice. It is not intended as research, a recommendation, advice, offer or solicitation to buy or sell any financial product or service, or to be used in any way for evaluating the merits of participating in any transaction. Please consult your own advisors regarding legal, tax, accounting or any other aspects including suitability implications, for your particular circumstances or transactions. J.P. Morgan and its third-party suppliers disclaim any responsibility or liability whatsoever for the quality, fitness for a particular purpose, non-infringement, accuracy, currency or completeness of the information herein, and for any reliance on, or use of this material in any way. Any information or analysis in this material purporting to convey, summarize, or otherwise rely on data may be based on a sample or normalized set thereof. This material is provided on a confidential basis and may not be reproduced, redistributed or transmitted, in whole or in part, without the prior written consent of J.P. Morgan. Any unauthorized use is strictly prohibited. Any product names, company names and logos mentioned or included herein are trademarks or registered trademarks of their respective owners.

Aumni, Inc. (“Aumni”) is a wholly-owned subsidiary of JPMorgan Chase & Co. Access to the Aumni platform is subject to execution of an applicable platform agreement and order form and access will be granted by J.P. Morgan in its sole discretion. J.P. Morgan is the global brand name for JPMorgan Chase & Co. and its subsidiaries and affiliates worldwide. Aumni does not provide any accounting, regulatory, tax, insurance, investment, or legal advice. The recipient of any information provided by Aumni must make an independent assessment of any legal, credit, tax, insurance, regulatory and accounting issues with its own professional advisors in the context of its particular circumstances. Aumni is neither a broker-dealer nor a member of any exchanges or self-regulatory organizations.

383 Madison Ave, New York, NY 10017