Securing your treasury with Atlar

Security is a priority for the entire Atlar team. Our customers entrust us with sensitive financial data, and we take that role seriously.

We continually evolve our security posture by complying with stringent certifications, like ISO 27001:2022, and enacting new product and organizational measures. This ensures that Atlar remains a safe partner to manage money with and delivers the reliability that our customers expect (you can see our status page here).

In line with this, we’re pleased to introduce our new Trust Center. This is where you can access our latest certificates plus detailed information on our security procedures and how we support your Treasury and Corporate IT policies. 

You can also find more information about our multi-layered approach in our security hub.

How we support your organization

Our team

Atlar’s corporate and information security teams, staffed with experienced professionals, are geared to respond to possible security incidents 24/7 and are responsible for providing quick resolutions to security and privacy issues.

We proactively maintain and adapt a comprehensive set of security policies in order to ensure that security remains at the heart of everything we do, including:

• Access management (zero-trust policy and principle of least privilege) 
• Change management (including that all infrastructure is configured as code)
• Secure coding practices
• Company-wide security awareness and training

You can learn more about our approach to each of these areas here.

Hosting and network segmentation

Atlar hosts its infrastructure and applications on Amazon Web Services (AWS) in Europe. AWS allows Atlar to scale efficiently when it comes to performance and availability—and provides the strongest guarantee possible in terms of infrastructure security and reliability.

The Atlar platform runs in a locked-down virtual private cloud (VPC) within a single dedicated AWS account and employs the strictest possible access controls.

Encryption

Atlar uses strong encryption algorithms to protect data both at rest and in transit. We leverage AWS Key Management Service (KMS) in order to manage encryption keys in line with industry best practices.

Intrusion detection and prevention

Atlar utilizes AWS security programs, including VPC Flow Logs and GuardDuty, to monitor for and detect anomalous behavior. Additionally, Atlar uses AWS Shield and Web Application Firewall (WAF) to further protect the platform from potential threats and attacks.

Threat intelligence

Atlar uses internal and external scanning tools (including GitHub’s Dependabot and the AWS Security Hub) to continuously monitor and assess potential vulnerabilities. We also leverage threat intelligence feeds and industry security reports that deliver relevant information to us in real time.

‍

Platform features and capabilities

SAML-based Single Sign-On (SSO)

Single Sign-On allows users to log into Atlar within a customer’s internal security environment. With SSO, no additional usernames, IDs, or passwords are required and all access controls can be managed by our customers. Atlar employs SAML 2.0 for LDAP authentication and supports all major identity providers, including Google Workspace, Microsoft Entra ID, AWS IAM Identity Center, Okta, and JumpCloud. Learn more about SSO here.

Multi-Factor Authentication

Multi-factor authentication (MFA) creates a randomly generated one-time password using the user’s smartphone, a token, or a SWIFT 3SKey digital certificate. When MFA is activated, the user is prompted to enter the one-time password after submitting their normal username and password—making it an effective fraud prevention tool when used on its own or, ideally, in combination with other Atlar security features. Learn more about secure authentication and the Atlar platform here.

User Management

The Atlar platform leverages role-based access control (RBAC) to ensure users have only the permissions required for their roles, adhering to the principle of least privilege. This minimizes the risk of unauthorized access and enhances overall security by strictly controlling user permissions and access levels.

Administrators can manage roles and permissions centrally, ensuring that security policies are consistently applied across the organization. More information can be found here.

Approval Chains

To enhance security around sensitive actions, the Atlar platform allows customers to create and enforce multi-step approval chains. This helps to reduce the risk of fraud and ensures that all actions, such as payments, are thoroughly vetted. These approval chains are fully customizable, allowing organizations to tailor them to their specific security requirements and policies.

Audit Trails

Atlar makes comprehensive audit trails available to its customers. These audit trails contain detailed records of all user and system activity that occurs, enabling administrators to undertake a granular review of all changes, operations, and events. This helps to ensure accountability within an organization, and can also facilitate security and incident-related investigations.

Assurances and compliance

Atlar maintains a number of certifications relating to security and compliance and also routinely engages external firms to conduct penetration testing and other forms of ethical hacking. You can access the following certificates and reports through our Trust Center:

• ISO 27001:2022
• General Data Protection Regulation (GDPR)
• Digital Operational Resilience Act (DORA)
• Penetration tests

Get in touch

If you have specific questions about any of our security policies or procedures, don’t hesitate to contact our team and we’ll be happy to help.