Trust

We will continually apply industry best practices to ensure a secure, reliable customer experience. We will be transparent and easily reached. We will proactively communicate issues and updates. Our actions will speak louder than words. We will care.

Ambition employees draw from hard-earned experience at Google, NASA, and Enterprise Rent-A-Car to deliver a robust solution that can handle the demands of Fortune 500 companies. From platform architecture to information security we've built Ambition to make your life easier, not harder.

Ambition's physical infrastructure is hosted and managed within Amazon's state-of-the-art data centers using Amazon Web Service (AWS) technology, trusted by companies including Netflix, GE, SAP, and Pfizer. Amazon maintains the following security certifications:

• SOC1/SSAE 16/ISAE 3402 (formerly SAS 70)
• SOC 2
• SOC 3
• FISMA, DIACAP, FedRAMP
• CSM Levels 15
• PCI DSS Level 1
• ISO 9001 / ISO 27001

AWS data centers are housed in nondescript facilities and critical facilities have extensive setback and military grade perimeter control berms as well as other natural boundary protection. Physical access is strictly controlled both at the perimeter and at building ingress points by professional security staff utilizing video surveillance, state of the art intrusion detection systems, and other electronic means. Authorized staff must pass two-factor authentication no fewer than three times to access data center floors. All visitors and contractors are required to present identification and are signed in and continually escorted by authorized staff.

Ambition's office is located within a secure building where access is controlled both externally and internally.

We take multiple steps to secure communication between you and our systems in addition to our own internal infrastructure. All network traffic runs over SSL/HTTPS, the most common and trusted communications protocol on the internet. Internal infrastructure is isolated using strict firewalls and network access lists. By default all access is denied and only explicitly allowed ports are exposed. Persistence and storage layers are encrypted and secured in-transit and at-rest using VPC firewalls. Access to sensitive infrastructure and data is secured behind VPN.

All customer data is isolated with unique security credentials at each level of transit including data upload, file storage, web application, data processing, and database. All customer data is backed up every night and stored for thirty days. Production databases maintain point-in-time transaction logs for restoration between scheduled backups.

To report a security vulnerability please email security@ambition.com. For sensitive communication you may use the PGP key listed below.

Fingerprint:

6B02 951A 19F8 B094 6A84 3D5C 5C7B E7E4 160D 5347

    -----BEGIN PGP PUBLIC KEY BLOCK-----
    mQENBFN03VIBCADITjG5ikfigpJo/pKGMm5+psnrQJfY5s7sJcUrQ2tr6PHJMu6H
    yQQ5AJMluDH3ysoRKji41vZEXGPfi5X2zrTj0WzsYSPcpJe14uMkyGjrf8fTFE0I
    Px4Mw857ma9Bns+mE3H1BZADEtBS4ALo5BK1aAQ3ZvV0vW64X78/oWSy7K/meYAj
    5l/NhvlRd1UFTxtvj7iUIgWmTmuqB2Ravw1Jhzg5bjqGbH4TcRxguA+jEgyBX89B
    qQ8E9vxupMye83ZqLtbU9rGq7AHLjIDnIeJ7B+g/MrYdIh5kNuM6epsiHemTM2Bj
    9cVClI3ZdjeT0KppVUPb7vQOWyhxKqJQlg/XABEBAAG0KUFtYml0aW9uIFNlY3Vy
    aXR5IDxzZWN1cml0eUBhbWJpdGlvbi5jb20+iQE9BBMBCgAnBQJTdN1SAhsDBQkH
    hh+ABQsJCAcDBRUKCQgLBRYCAwEAAh4BAheAAAoJEFx75+QWDVNHR1IH/2i/LXo6
    qli899Vsu00AcsP2ejJp3zVRGsTW7RTFGIeMLfbVqoQ9YNJbfPr6h8hzxKpicTdz
    fz2VdNHogeIEPydNXpEl/LoFhlgJ5pqf/UvmYRuwzyUBX8OVMRnq/jPPAWiM0lGs
    1Ivv9hT6Obf5wkCfTuz345rwCWll7p8lLYfBaQYWsqzxeRz+Af6RXRrHc/Wtzs+h
    UdzzN/Qj07SYWHttDXUQZQzDuuhPuFUS+G7IbjSxyQUdhv3658Gnbtv0dqkfskun
    ksLyu4SZl2IphBlpf6fAbKI6Ze3EtoX+ydAAESwyZ513g5cqVcC1VoOUzaGmlFOr
    WIUUcpp4aXDXxdu5AQ0EU3TdUgEIAMVjXOxPmipFyXgdo6IDgoEYBF3nuv1S3SoH
    P1bjxH845yYm6MDfggCxLAAF3blgnCPVw9/85jeWxD2vjcXY4JpC/A11KA12VhbO
    MLdv8RD/5cyxLMS5W97+LHLs5Ek1+F93HRYQG5SZLqgfDvlBWP5QHqSIGuzFBW3L
    d2nWEEMzzMxqB+ALw44rxfLWj2p+JO+XS5Weir+r/haaE+4MXoyA/C6ZdGnwO3J0
    RvcuV5U1FsfkWK1aHc6Fi1j8a8c7XJEi3l6ki3eqCVfSg12TSTt8gwyrNtV3vvtg
    WdrOcOHxXKoayM7hYJvhDp25FOy/5H9AmWQ1SJDQnoGsiSGWZMUAEQEAAYkBJQQY
    AQoADwUCU3TdUgIbDAUJB4YfgAAKCRBce+fkFg1TRw1fCAC3PQWbGGXt+c1adjl8
    6UwmvrzjmhoYCZ/CNq4UPl1F9dlJsT9k1SpOvxVbE3izSQ/PA66GsRvYsXHBbDzA
    51+r5/uB4GGlF6Gw+92MR8Mtb/eXY/NVyG4bSzswRKvuIQNlUrLbR/qtwe2u59zp
    XU/HLb2yCIB/pP7T0FliPDXHECZqADIbv/CjKVfNFZQhMcHjjtjcFfE0W0HwBl56
    mmxcQ3GzTrOtIPNVdAkFZdonaHH8hdEAsD8zZowY7mf+JK+JAmV9sa++zh89SsMY
    EGSxGNUNBd98H2/uu9+5XIQRBEcXK/KKjh/xPZIXKWDVRTudXdHZ33HhQKDqJ3Z9
    tuRJ
    =6aHB
    -----END PGP PUBLIC KEY BLOCK-----