Data Security

• All our components are hosted within a secure VPC and data is encrypted at rest with AWS KMS using AES-256. Furthermore, we employ TLS 1.2 or higher for encryption in transit.

• Our application secrets are also securely encrypted at rest with KMS and AES-256.

Product Security

• SkyDeck.ai implements regular penetration testing and conducts vulnerability scanning at crucial stages of our Secure Development Lifecycle (SDLC).

• Our security strategies include both black-box and grey-box testing during penetration testing.

• We utilize various methods to ensure the security of our system, including Static analysis, Software composition analysis, Malicious dependency scanning, Dynamic analysis, and Network vulnerability scanning.

Access Management

• We leverage reputed SSO services for securing our identity and access management.

• Access to applications is role-based and is automatically revoked upon the end of employment.

• Any further access must comply with the policies set for each application.

Data Protection

• We guarantee that all customer data is encrypted both at rest and during transit.

• AWS Key Management System (KMS) is responsible for managing our encryption keys.

Security Education

• Comprehensive security training is provided to all employees during their onboarding process and is refreshed annually through educational modules within our platform.

• Our team shares regular threat briefings in communication channels to keep them informed of important security updates.

Vendor Security

• We ensure secure remote access to internal resources using WireGuard.

• To provide an additional layer of protection, we also use malware-blocking DNS servers to safeguard employees and their endpoints while browsing the internet.