Security Program Highlights

Trisk main focus is on security governance, risk management and compliance. It means encryption at rest and in transit, network security and server hardening, administrative access control, system monitoring, logging and alerting, and more.

Data Security

Trisk encrypts data at rest and in transit for all of our customers using HTTPS/TLS and Amazon Web Service’s Key Management System (KMS) to manage encryption keys using hardware security modules for maximum security in line with industry best practices.

Application Security

Trisk regularly engages with application security experts for third-party penetration tests. It includes the evaluation of the source code, running application, and the deployed environment.
Trisk also uses high-quality static analysis tooling provided by Amazon Web Service’s such as GuardDuty, Amazon Inspector, and CloudWatch to secure our product at every step of the development process.

Infrastructure Security

Trisk uses Amazon Web Services to host our application. We make full use of the security products embedded within the AWS ecosystem, including KMS, GuardDuty, and Inspector.
In addition, we deploy our application using containers run on AWS managed services.

Identity and device management

Trisk uses industry-accepted best practices and up-to-date solutions ensuring that only the right people can access your company’s information in Trisk with features like single sign-on, MFA, and Access Keys.

Compliance certifications and attestations

SOC 2 (Type I)

June 30, 2020 - Download Report
2023 - expected in Q3

SOC 2 (Type II)

Our security program at Trisk protects our organization and your data at every layer. We currently in SOC 2 Type II observation phase and respective certification documentation is expected in Q3., Inc.

150 Executive Park Boulevard, Suite 3050, San Francisco, CA 94134

Email Address:

Telephone number: 4082188375

Effective as of January 1st, 2023

If you have questions about security standards at Trisk, you may contact