Cybersecurity Framework

Effective Date: May 26, 2026

Automated high-frequency options trading demands an uncompromising, institutional-grade cloud infrastructure. This Cybersecurity Framework Policy details the strict technical guardrails, encryption protocols, and operational mandates implemented by SPIKE Options LLC to safeguard our execution network and your capital.

1. Cryptographic Key Defenses

Your connection to the market is our highest security priority. All API credentials, access parameters, and connection secrets linked to partner firms (including Alpaca, Webull, Tastytrade, Tradier, and TradeStation) are subjected to heavy cryptographic shielding.

  • Encryption at Rest: All sensitive database records are encrypted using AES-256 protocols via dedicated hardware Key Management Systems (KMS).
  • Encryption in Transit: API payloads, authentication requests, and execution commands are transferred exclusively via TLS 1.3 pipelines during active trade routing routines.
  • No-Display Protocol: Once an API key is successfully ingested into the SPIKE dashboard, it is irreversibly hashed. It can never be displayed in plain text again, even to internal SPIKE engineers.

2. System Isolation and Architecture

The SPIKE execution layer and the Oculus AI builder engines operate inside deeply isolated cloud virtualization structures (Virtual Private Clouds). By containerizing the core architecture, we prevent cross-tenant data leakage and contain potential isolated execution errors.

Our entire production environment sits behind an advanced Enterprise Web Application Firewall (WAF) designed to automatically detect and deflect distributed denial-of-service (DDoS) threats, unauthorized access probes, SQL injections, and malicious botnet traffic before it reaches the execution tier.

3. Internal Zero-Trust Access

SPIKE strictly adheres to a Zero-Trust internal security model. No system, script, or employee is implicitly trusted, regardless of their location within our corporate network.

  • Principle of Least Privilege: SPIKE engineers and support staff operate with the minimum level of access necessary to perform their roles. No human employee has direct access to user API keys or plain-text billing information.
  • Mandatory Authentication: All internal administrative actions require hardware-based Multi-Factor Authentication (MFA) and are immutably logged for routine security auditing.

4. Client Authentication Standards

We provide robust tools to ensure the client-side of the platform remains secure. Users are strongly encouraged to enable Time-Based One-Time Password (TOTP) Multi-Factor Authentication upon initial account creation.

The SPIKE platform employs rigorous session management protocols, including automatic termination of idle dashboard sessions, concurrent login restrictions, and instant alerts for logins attempting to access your account from unrecognized geographical IP locations.

5. Vulnerability Management and Auditing

Our codebase undergoes continuous integration scanning to identify patched vulnerabilities and outdated software dependencies before they ever reach the production environment. We conduct routine automated penetration testing and actively monitor CVE (Common Vulnerabilities and Exposures) databases to deploy emergency hotfixes mitigating zero-day exploits.

6. Incident Response and API Kill-Switch

SPIKE maintains active, 24/7/365 performance monitoring tools across all live routing paths. In the event of a critical threat, we prioritize the protection of client capital above all else.

The API Kill-Switch: Should our monitoring systems detect a severe infrastructure breach or a synchronized attack on our routing servers, SPIKE will initiate an automated protocol that instantly drops all active API connections to integrated brokerages. This severs the bridge between SPIKE and your capital, ensuring no unauthorized trades can be routed.

In the unlikely event of a suspected database or data path compromise, we are legally mandated to alert impacted users via their registered account emails within 72 hours. This notice will detail the specific nature of the event, the data potentially involved, and provide immediate instructions for cycling your brokerage API credentials to fully secure your connected portfolios.

Build options algorithms and automate your
trading
ZERO licensing overhead.

Route native Oculus parameters direct to market engines.

Start trading now

The definitive bridge between sophisticated options logic and live production. Connect Oculus AI strategy builds natively to US regulated brokerages, utilizing an industrial-grade execution layer with zero software licensing overhead and robust structural risk controls.

Corporate
Legal

SPIKE MARGIN ACCOUNT AND AUTOMATED TRADING RISK DISCLOSURE / CRITICAL WARNING: Options and automated algorithmic derivatives trading involve significant financial risk and are not suitable for every investor. The use of automated trading tools like the SPIKE execution platform introduces mechanical and technical risks, including software latency, public internet routing delays, cloud disconnection events, and external third-party brokerage API failures. System response times, account access, and execution token updates may vary due to extreme market volatility, underlying asset liquidity, and network performance.

Trading in financial markets via AI automated trading software involves substantial risk of loss and is not suitable for all investors. Past performance of automated trading algorithms is not indicative of future results. Hypothetical results have limitations and do not reflect actual trading performance. SPIKE OPTIONS LLC offers automated software tools for educational, formatting, and structural execution layers only. This is not investment advice or a explicit recommendation to trade specific securities, options configurations, or underlying commodities. Consult a licensed professional financial advisor before making deployment decisions.

Per FTC guidelines, internal testimonials are fully verified but historical individual results will vary significantly. The CFTC warns explicitly of substantial loss mechanics inside derivative architectures; evaluate your financial net worth limits cleanly before allocating risk profiles. The SEC notes that securities options trading risks the complete loss of your absolute principal investment pool. Using our services means you explicitly accept these technical risks and agree in full to our Terms of Service, EULA, Privacy Policy, and Legal Notices. We are not a registered broker-dealer, clearing firm, or financial advisory firm.

NFA RULE 2-29 DECLARATION: HYPOTHETICAL PERFORMANCE RESULTS HAVE MANY INHERENT LIMITATIONS, SOME OF WHICH ARE DESCRIBED BELOW. NO REPRESENTATION IS BEING MADE THAT ANY ACCOUNT WILL OR IS LIKELY TO ACHIEVE PROFITS OR LOSSES SIMILAR TO THOSE SHOWN; IN FACT, THERE ARE FREQUENTLY SHARP DIFFERENCES BETWEEN HYPOTHETICAL PERFORMANCE RESULTS AND THE ACTUAL RESULTS SUBSEQUENTLY ACHIEVED BY ANY PARTICULAR TRADING PROGRAM. ONE OF THE LIMITATIONS OF HYPOTHETICAL PERFORMANCE RESULTS IS THAT THEY ARE GENERALLY PREPARED WITH THE BENEFIT OF HINDSIGHT. IN ADDITION, HYPOTHETICAL TRADING NOT INVOLVE FINANCIAL RISK, AND NO HYPOTHETICAL TRADING RECORD CAN COMPLETELY ACCOUNT FOR THE IMPACT OF FINANCIAL RISK OF ACTUAL TRADING. FOR EXAMPLE, THE ABILITY TO WITHSTAND LOSSES OR TO ADHERE TO A PARTICULAR TRADING PROGRAM IN SPITE OF TRADING LOSSES ARE MATERIAL POINTS WHICH CAN ALSO ADVERSELY AFFECT ACTUAL TRADING RESULTS. THERE ARE NUMEROUS OTHER FACTORS RELATED TO THE MARKETS IN GENERAL OR TO THE IMPLEMENTATION OF ANY SPECIFIC TRADING PROGRAM WHICH CANNOT BE FULLY ACCOUNTED FOR IN THE PREPARATION OF HYPOTHETICAL PERFORMANCE RESULTS AND ALL OF WHICH CAN ADVERSELY AFFECT TRADING RESULTS.

© 2026 SPIKE OPTIONS LLC. All intellectual property, assets, and engine frameworks reserved natively.