More information available about ICE and its line of businesses available here: https://www.ice.com/index
ICE ensures the physical and digital security of its markets, clearing houses, mortgage technology, and data through industry-leading security technology and processes. ICE’s Information Security Department consists of diverse and skilled teams that work to protect confidential data from unauthorized access, misuse, disclosure, destruction, modification or disruption.
Our security team has four distinct functions:
- IS Cybersecurity
- IS Red Team
- IS Application Security
- IS Governance, Risk, and Compliance
Due to the number of requests received from regulators, members, customers of subsidiaries, and other stakeholders, ICE does not respond to individual inquiries or questionnaires from customers regarding the security of ICE systems. Further, to protect the security and integrity of ICE environments, it is company policy that we do not share information related to internal policies and procedures with third parties. We understand that our customers, as part of their internal vendor management procedures, request information related to security process and posture from their vendors from time to time. As such, ICE shares SOC reports with our customers that independently validate our internal information security controls through this Security Portal.
Through this portal you can request documents for our general ICE business unit.
21-Jan-2024: The following SOC Reports have been released and made available for clients to download. These reports cover Intercontinental Exchange Holdings, Inc.'s Fixed Income & Data Services, Mortgage Technology - Black Knight Platforms and eConfirm System. Bridge letters for the period of Oct 1, 2024 through Dec 31, 2024 are available as well for each report.
You can find each of the reports under their respective business pages hyperlinked below.
Fixed Income & Data Services:
2024 IDS SOC 1 Type 2 Report
ICE Mortgage Technology:
2024 IMT Data & Analytics SOC 1 Type 2 Report
2024 IMT Default Technologies SOC 1 Type 2 Report
2024 IMT Servicing Data Warehouse SOC 1 Type 2 Report
2024 IMT Servicing Technology SOC 1 Type 2 Report
2024 IMT Expedite SOC 2 Type 2 Report
2024 IMT Servicing Technology SOC 2 Type 2 Report
2024 IMT Surefire SOC 2 Type 2 Report
Exchanges:
2024 eConfirm SOC 1 Type 2 Report
06-Jan-2024: The ICE Inc 2024 ICE ITGC SOC 1 Type 2 report and 2024 ICE SOC 2 Type 2 report has been released and made available for clients to download. These reports cover Intercontinetal Exchange Holdings, Inc.' Trading, Clearing, Fixed Income and MERS Platforms.
Bridge letters for the period of Oct 1, 2023 through Dec 31, 2024 will be available in mid January due to the influx of requests for bridge/gap letters through year-end.
05-Nov-2024: The ICE Mortgage Technology 2024 Encompass SOC Core 1 Type 2 report has been released and made available to download on the Mortgage Technology Trust center page.
The remainder of ICE SOC reports will be released as they are finalized by our auditors. Please check the Trust Center Updates periodically for release information. You may reach out to ICE-ThirdPartyDueDiligence@ice.com if you have any questions.
January 26, 2024
The 2023 ICE ITGC SOC 1 Report has been released.
Bridge Letters for SOC 1 reports have been released.
The following 2023 SOC 1 Reports have been released:
IDS SOC 1 IDD SOC 1 IDD RPO SOC 1 ICE eConfirm SOC 1 IMT Encompass SOC 1
You can find each of the reports under their respective business pages in our Trust Center: https://ice.safebase.us
Bridge letters for the period of Oct 1, 2023 through Dec 31, 2023 will be available in shortly.
Please reach out to ICE-ThirdPartyDueDiligence@TheIce.com if you have any questions.
Thank you,
The ICE Third Party Due Diligence Team
As a provider of global financial services and critical economic infrastructure, ICE is committed to cyber-resiliency internally and via third-party relationships - we are excited to announce the official launch of the ICE Security Trust Center. By using this portal, you can request access to our compliance documents, review our standardized questionnaires such as the SIG and gain a general understanding of our security posture.
Over time, our team will be making changes to this portal as we implement new tools and processes in our environment. You can use the Subscribe button to receive email notifications for when our team has an important update, such as if we have an updated compliance report or if we have a status update regarding a major security vulnerability that has been recently discovered.
-The ICE Third Party Due Diligence Team
If you need help using this Trust Center, please contact us.
If you think you may have discovered a vulnerability, please send us a note.