Treasury 
Risk Management 
Payments 
Connectivity 
Working Capital 
Accelerate ERP Migrations 
API Integration 
Cash Forecasting 
Enterprise Security 
Fraud Prevention 
FX Exposure Management 
FX Risk Management 
Liquidity Planning 
Real-time Payments 
Supplier Financing 
Office of the CFO 
Treasury 
Information Technology 
Retail 
Financial Services 
Higher Education 
Healthcare 
Manufacturing 
Enterprise ($1 billion+) 
Mid Sized Companies 
Banks 
Public Sector 
Blog 
eBooks 
Webinars 
Videos 
Podcasts 
News 
Fact Sheets 
Success Stories 
FAQs 
Value Engineering 
KYRIBA FOR KYRIBA 
KYRIBA FOR COMMUNITY 
About Us 
Culture & Values 
Recognition 
Leadership 
Careers 
Contact Us 
Fact Sheet
Securing Your Financial Data with Kyriba
Table of Contents
- How We Support Your Organization
- Kyriba’s Cyber Defense Center
- Threat Intelligence
- Data Loss Prevention (DLP)
- DDoS Protection
- Encryption
- Security Features and Capabilities
- Single Sign-On (SSO)
- Multi Factor Authentication (MFA)
- IP Filtering
- Kyriba Control Center
- Virtual Private Network
- 3SKey
- Assurances, Certifications and Compliance
- Privacy Focus
How We Support Your Organization
With a proven track record over more than 20 years in Treasury and Finance SaaS solutions, our extensive, advanced protection for your data, security, controls, and your operational processes will keep your firm protected.
Kyriba’s Cyber Defense Center
Kyriba’s Cyber Defense Center, staffed with experienced professionals provides 24/7, global, follow the sun support.
The goal of the Cyber Defense Center and Security Incident Response Team (CSIRT) is to detect and react to computer security incidents, determine their scope and risk, respond appropriately to the incident, communicate the results and risk to all stakeholders, and reduce the impact and likelihood of the incident from reoccurring. At the heart of the CDC, Kyriba runs Splunk as our Security Information and Event Management (SIEM) system.
Threat Intelligence
- Dark Web scanning for compromised credentials, which includes email addresses, usernames and passwords
- Bolsters our ability to defend against ransomware, credential theft, brand abuse, and other malicious activities both cyber and physical
- Leveraging industry sources which deliver relevant cyber threat insights in real time
Data Loss Prevention (DLP)
DLP focuses on detecting and preventing the leakage, loss or misuse of data whether it’s through breaches, exfiltration, or unauthorized use. Kyriba’s approach to DLP covers our endpoints and is an effective tool for us to protect our customers’ data.
DDoS Protection
Amazon Web Services (AWS) Shield defends against the most common and frequently occurring network and transport layer DDoS attacks that target your website or applications.
Encryption
Kyriba uses AWS encryption for all data at rest. This automatically encrypts all block and file data using 256-bit encryption before storing it onto virtual disks. All data is encrypted in transit as well.
Security Features and Capabilities
Kyriba’s security is feature-rich and can be used to strengthen your financial controls framework and make audits and tracking of security and workflow easier than ever.
Single Sign-On (SSO)
SSO allows a user to login using their company assigned username and password. SSO uses SAML 2.0 for LDAP authentication and Rest APIs to manage authorizations. All password controls are managed internally by their Corporate IT team and policies.
Multi Factor Authentication (MFA)
MFA is an effective fraud prevention tool when used on its own or ideally in combination with other security features like SSO or IP Filtering. MFA creates a randomly generated one-time password using the user’s smartphone, a token, or a SWIFT 3SKey digital certificate.
IP Filtering
IP Filtering is a security feature that allows clients to restrict login to a predefined set of IP addresses – or ranges of addresses – which are set up and maintained by the system security administrator. If used on its own, IP filtering is an effective fraud prevention tool.
Kyriba Control Center
Maintaining control of treasury workflows is important for monitoring errors, disruptions and suspicious activity. Kyriba Control Center is used for monitoring workflows and treasury activity within Kyriba. Also used for early detection of unauthorized usage and potential fraud.
Virtual Private Network
Kyriba can set up and maintain a virtual private network (VPN) for each client so that users only access Kyriba through a dedicated network maintained by Kyriba. It is commonly used in combination with IP filtering and MFA to customize the level of protection for both centralized and decentralized users.
3SKey
Support Kyriba incorporates digital signatures as part of the core security features. Personal identity tools are provided that allow the user to digitally sign messages and electronic documents, as well as approve transactions within the system. Kyriba supports the SWIFT 3SKey digital signature format. Kyriba Digital Signatures can be used to approve and/or authenticate payments sent to your banks from Kyriba, authenticate payments sent via non-bank channels and to login to Kyriba as one option for multi-factor authentication.
Assurances, Certifications and Compliance
From third-party penetration testing and ethical hacking, to industry standard auditing and reporting, Kyriba is always focused on compliance and security as well as maintaining security and other data related certifications as part of our commitment to our customers. Kyriba’s Risk and Compliance team conducts the following assurance engagements at least annually:
- ISO27001 Certification of Kyriba’s Information Security Management System (ISMS)
- SOC 1 / SOC 2 Compliance
- SWIFT L2BA certified (AL2 Provider) / CSP AL2 and Service Bureau Compliant
- Penetration Testing / Ethical Hacking
- Frequent Red Team exercises with industryleading Cyber Defense Firm
Privacy Focus
Our Privacy Team is knowledgeable on privacy laws and emerging trends worldwide to keep your corporate entities and your subsidiaries compliant.
Related Resources
-
Reducing Operational Risk Through Cloud-Based Treasury TechnologyLarge private research university rethinks its treasury approach to increase efficiency and protect against loss Note: the client in this case study could not be publicly named per university policy, but the assistant treasurer...Read the success story -
One Version of the TruthKyriba clients and Liquidity Excellence Award winners tell all, and it is clear: Organizations around the world have experienced a revolutionary transformation with Kyriba, constantly evolving and modernizing treasury processes and systems. And we...Watch the video -
Kyriba Extended SecurityWith fraud and cyberattacks increasing in both frequency and sophistication, it is important to partner with Kyriba to secure your most important data. How We Support Your Organization With a proven track record over...Read the fact sheet