Security at Mobilus

We take information security and compliance very seriously here at Mobilus. Our team of experienced IT professionals have a security first approach to best handle your data.
Our security controls and mechanisms are based on the ISO 27001 Information Security Standard and NIST Standards, which include programs covering: Policies and Procedures, Access Control, Business Continuity, HR Security, Network Infrastructure Security, Third-Party Security, Vulnerability Management, as well as Incident Response.

Data Encryption

All in transit information to and from our servers are encrypted with HTTPS certificates using 256-bit encryption.

Cloud Infrastructure

Mobilus runs on AWS cloud infrastructure in the ca-central region. Our infrastructure is designed to be redundant and scalable backed by Amazon’s service level agreements.
AWS facilities comply to the following security and data privacy standards: ISO/IEC 27001:2013, ISO/IEC 27017, ISO/IEC 27018, PCI-DSS Level 1, CSA STAR Level 1, 2 & 3, SOC 1, SOC 2, and SOC 3.

Penetration testing

Penetration testing are conducted on a yearly basis by external experts.
Whenever issues are identified, a remediation plan is scheduled according to the criticality of these issues, including additional tests for the resolved vulnerabilities.

Background check, NDAs and training

All employees whose task include handling sensitive information and systems undergo a third-party background check prior to formal employment offers.
All Mobilus employees must sign non-disclosure agreements before gaining access to company systems or data.
Our Information Security Program has employees’s education in mind with training session for all employees on a regular basis.