Ethiack Blog

Continuous Security Assurance for ComplianceWise: Adapting to an Ever-Evolving Landscape

Written by Ethiack | 06/08/23 22:50

About ComplianceWise


ComplianceWise is a leading software solution provider for Anti Money Laundering (AML) regulations. They offer high-grade SaaS solutions made to streamline the process of adhering to AML guidelines. 

Their clients are among the most sensitive in the world when it comes to data breaches. And this made cybersecurity a top priority for ComplianceWise.


Industry:
Finance | Fintech
Headquarters: Amsterdam, Holland
Company Size: 10-50 people
Protected Attack Surface: 20 assets


Pentesting just wasn’t good enough


Naturally, security was already a top concern, and they were doing pentests already at the regular process, but their frequency was too short. With frequent deployments and a high rate of code shipping, penetration testing was simply too infrequent to provide the continuous security coverage they needed. In addition, the costs of annual penetration tests were rising steadily.

They needed something better.



Enter: the symbiosis between man and machine


The Artificial Hackers answered their needs. It runs 24/7, testing their defenses every time they deploy new codes or a change is detected in their infrastructure. This meant that they didn’t need to wait around for the next pentest report to come through. On top of that, the Artificial Hackers runs at only a fraction of the cost of a regular pentest.

And it was this newly freed-up budget that unlocked a new possibility: investing in creative, event-based ethical hacking events. ComplianceWise took this budget and used it to launch events on our Crowdsourced Ethical Hacking platform, where the top ethical hackers in the world got to work detecting their most sensitive vulnerabilities.

The Artificial Hacker went in-breadth, while the Ethical Hackers went in-depth.
All angles were covered.



Client Trust Reinforced


Deployments became less stressful, knowing that any potential security vulnerabilities would be identified and addressed rapidly. More importantly, they can reassure their clients that no one in the market takes security as seriously as they do. In an industry like finance, this is crucial for success.


 Download the full case study here | PDF