Hacks happen 99% of the time due to a lack of protocols (i.e. someone not following the rules.) We use "cold-storage" vaults to store 98% (on average) of all crypto being held on the CoinMetro platform at any given time. These are air-gapped, multi-signature accounts. Access to our admin back office is via static IP's only, using 2FA and biometric authentication. Two-factor identification and biometric authorization are also available on the client side.
Only certified individuals within the organization have access to the private keys needed to move funds, and this can only be done from specific VPN connections that we maintain on owned networks worldwide.
We will run weekly audits and quarterly external tech audits to ensure our infrastructure is up-to-date and operating at peak performance.