Certification by E Com Security Solutions reinforces Pennant’s commitment to enabling secure, reliable, and compliant lending operations for banks and financial institutions.
Pennant Technologies, an agile and innovative financial technology company, that it has successfully achieved System and Organization Controls (SOC 2) Type 2 certification for its digital lending platform, pennApps Lending Factory. Achieving SOC 2 Type 2 compliance demonstrates that Pennant has established strong internal controls and processes, verified through an independent audit, to safeguard sensitive financial data and ensure reliable, secure platform performance.
E Com Security Solutions, a trusted global provider of cyber-risk and compliance management solutions, has confirmed and certified that Pennant’s platform meets the stringent Trust Services Criteria established by the American Institute of Certified Public Accountants (AICPA), covering security, availability, confidentiality, processing integrity, and privacy.
“Security, compliance, and trust are at the core of everything we build at Pennant Technologies,” said Rama Krishna Raju, Founding Director & CEO, Pennant Technologies. “As financial institutions navigate increasingly complex regulatory and risk environments, our platform is designed to meet the highest standards of data protection and operational integrity. Achieving SOC 2 Type 2 certification validates our commitment to these principles and assures our clients of a robust, compliant foundation for their lending operations.”
The certification process included a comprehensive evaluation of Pennant’s platform across all Trust Services Criteria—ensuring protection against unauthorized access, consistent system availability, confidentiality of sensitive financial data, accuracy in transaction processing, and responsible handling of personal information.
With this achievement, Pennant strengthens its position as a trusted technology partner for banks and financial institutions, enabling them to run mission-critical lending operations with confidence, backed by globally recognized security and compliance standards.
About E Com Security Solutions
E Com Security Solutions is a leading global provider of cybersecurity, privacy, risk, and compliance services. Backed by more than 18 years of experience, over 300 cybersecurity and privacy experts, and a client portfolio of 6,000+ organizations across 29+ industries, the company supports businesses worldwide in achieving robust security and regulatory compliance. With operations spanning 125+ countries and recognition through more than 15 industry awards, E Com Security Solutions is a trusted partner in driving cyber resilience and business trust.
E Com Security Solutions delivers comprehensive Governance, Risk, and Compliance (GRC) services that enable organizations to identify, assess, remediate, monitor, and manage enterprise risks effectively. The company helps businesses achieve compliance and certification across a broad spectrum of global regulatory frameworks and industry standards, including SOC 1, SOC 2, PCI, FedRAMP, FISMA, CMMC, NIST SP 800-171, NIST 800-53, GDPR, HIPAA, CCPA, SSPA, NIS2 Directive, C5, DORA, CSA STAR, and ISO Standards such as 27001, 27701, 9001, 22301, 42001, and 37001. Through its streamlined and integrated assessment methodology, E Com Security Solutions enables organizations to achieve multiple security and compliance certifications through a single, efficient review process, reducing complexity, accelerating certification timelines, and strengthening overall cyber resilience.
E Com Security Solutions leverages its advanced Cyber Intelligence Centre to deliver a comprehensive portfolio of cybersecurity services, including red teaming, application penetration testing, network penetration testing, blockchain security testing, cloud security assessments, and POS security testing. By combining machine learning insights from more than a billion cyber events worldwide with the expertise of cybersecurity professionals, the company enables organizations to identify, assess, and mitigate cyber threats up to 60 times faster and more effectively. This intelligence-driven approach helps businesses strengthen security resilience, validate their defenses, and stay ahead of evolving cyber risks.
Our AI-powered Governance, Risk, and Compliance (GRC) platform, combined with our expert guidance, empowers organizations with continuous visibility, streamlined oversight, and greater control across their entire compliance lifecycle.
