Securing AWS for a financial technology organization

About CashiQ

Located in Hamilton, Ontario CashiQ is a Canadian technology firm specializing in the financial industry. The company offers an investment platform to individual consumers, corporations and trusts to fund and build high yield portfolios. The highly efficient work flow and compliance with Canada’s FINTRAC regulations provides Canadian Financial Institutions, wealth management offices and clients with a fully integrated platform with the highest levels of compliance and regulatory control.

The Challenge

The CashiQ team utilized multiple AWS services, including infrastructure, platform and serverless offerings for their digital platform. AWS offered the latest bank data encryption and asset monitoring techniques, a key factor in selecting AWS. CashiQ wanted an independent, external third-party audit to ensure their AWS account was deployed using security best practices. They chose Curious Orbit to perform a deep-dive analysis/audit of their AWS cloud-hosted solution.

The Solution

Curious Orbit checked more than 100 items across core services used by the CashiQ application, including Identity and Access Management (IAM), Simple Storage Service (S3) and Relational Database Service (RDS). They delivered a prioritized list of action items that CashiQ implemented to better position their app and AWS account to meet strict security requirements. They also recommended services to improve the security, effectiveness and availability of the CashiQ app.

"We did a fair bit of homework thru our network and on-line to find the best organization to conduct an audit of our AWS account. Brett and his team came highly recommended as one of AWS’s preferred partners. We met with Brett a couple of times before engaging his firm. We were impressed with his in-depth experience with AWS and his genuine concern to ensure all of the best practices and configurations available were implemented properly. The development team respected his experiences and enjoyed implementing his recommendations. I would highly recommend him to large and small organizations."

Don Martone

The Benefits

Review for Best Practices

Deep-dive assessment helps ensure your AWS environment is set up according to best practice.

Identify Security Improvements

AWS guidance and industry best practice is leveraged to identify opportunities to improve security.

Prioritized Remediation Plan

Audit report visuals show highest priority items and AWS services that may need attention in a simple view.

Want to learn more about how we can secure your AWS account?