Taurus, a global leader in digital asset infrastructure, announces the renewal of the International Standard on Assurance Engagements (ISAE) 3402 Type II certification. This certification, awarded following a comprehensive audit by Deloitte, affirms that Taurus' operational delivery and services for customers and partners meet the rigorous security and control standards prescribed by its ISAE 3402 framework.
The ISAE 3402 Type II certification is an internationally recognized assurance standard that evaluates the effectiveness of a service organization's control systems over a period of time. It provides a rigorous assessment of a company’s non-financial reporting controls as related to security, availability, processing integrity, confidentiality, and privacy. For Type II certification, auditors not only examine the design but also the operational effectiveness of these controls over a specified period, typically at least six months. This ensures ongoing compliance and operational excellence, offering substantial assurance to clients and stakeholders about the reliability and security of the certified organization's services.
The renewed certification reassures clients and stakeholders of Taurus' commitment to reliable processes across four critical areas:
- Software delivery: Taurus maintains the integrity and accountability of its software delivery pipeline, from the creation of source code to the building of binaries and their deployment.
- Access control: Taurus rigorously manages access to its IT systems, enforcing access restriction, need-to-know, and audit trail.
- Managed services: Taurus provides managed services with a consistent standard of security and operational reliability.
- Key management: The certification highlights the robust procedures Taurus employs in creating key material through dedicated processes (key ceremonies) and implementing reliable recovery processes.
Jean-Philippe Aumasson, Taurus’ CSO, commented: "This certification reaffirms the effectiveness of the controls across our IT infrastructure and key management operations, which are crucial for safeguarding against risks such as phishing, supply chain attacks, natural disasters, and insider malfeasance.”
About Taurus SA
Taurus SA is a Swiss Fintech, founded in April 2018, that provides enterprise-grade digital asset infrastructure to issue, custody, and trade any digital assets, including cryptocurrencies, tokenized assets, NFTs, and digital currencies. Taurus is a global leader in the banking segment, entrusted by the full spectrum of financial institutions: systemic banks, universal banks, online banks, crypto-banks, private banks, and broker-dealers. Taurus also operates a marketplace for private assets and tokenized securities. Taurus SA is a securities firm supervised and regulated by FINMA. TDX is an organized trading facility operated by Taurus.
About Taurus’ platform and products
Depending on their business model, strategy, and risk tolerance, Taurus' clients can seamlessly manage cryptocurrencies including staking, digitize and tokenize any type of asset on any standard end-to-end, and process digital currencies of their choice. Taurus’ product portfolio is composed of Taurus-PROTECT™, the leading secure storage solution in Europe which is currently used by more than 30 financial institutions and corporations. Taurus-CAPITAL™ allows clients to issue and manage tokenized assets on public and private blockchains, as well as interact with any smart contract. The regulated marketplace for digital assets, TDX™, is connected to Taurus-PROTECT™ and Taurus-CAPITAL™. All products leverage Taurus’ blockchain node infrastructure, Taurus-EXPLORER™, which provides a unified API and reliable broadcasting algorithms to interface securely with blockchain networks. For more information, please visit: www.taurushq.com