Security

Your data and credentials are protected by default.

🔐

AES-256 Encryption

All cloud credentials are encrypted at rest with AES-256 and decrypted only in-memory per request.

🌐

TLS 1.3 in Transit

All data between your browser, our API, and cloud providers is encrypted with TLS 1.3.

👤

Role-Based Access

Granular RBAC ensures each user only sees what they are permitted to access within their organization.

🔍

Continuous Scanning

Automated vulnerability scanning and dependency updates run continuously across our stack.

📋

SOC 2 In Progress

We are actively pursuing SOC 2 Type II certification. Audit reports available on request for enterprise customers.

🏗️

Private EKS Cluster

Our API runs on a private EKS cluster with no public endpoint — all traffic routes through API Gateway.

🚨 Responsible Disclosure

If you discover a security vulnerability, please email security@cloudops.ai immediately. We review all reports within 24 hours and credit researchers who follow responsible disclosure. Please do not publicly disclose vulnerabilities before we've had a chance to address them.