AiroAV Malware Writes: SOC It 2 Me: CyberArk Achieves SOC 2 Kind 2 Compliance
Service Group Management (SOC) 2 is an auditing process that ensures service suppliers are securely managing information to guard the pursuits of their prospects, their prospects’ prospects and so forth. This stringent impartial audit seeks to find out the suitability of the design and working effectiveness of controls SaaS vendor implements for its companies.
As we proceed to bolster and improve our best-in-breed Privileged Entry Administration (PAM) as a Service portfolio, we’re proud to announce that CyberArk not too long ago attained SOC 2 Kind 2 compliance for each Endpoint Privilege Supervisor and CyberArk Privilege Cloud.
This can be a momentous accomplishment and right here’s why. The audit checks over 30 distinctive controls, ideas and standards. These embody, however will not be restricted to, total dedication to organizational integrity, moral values and, after all, specificity into how information is managed and secured. SOC 2 is a complete audit that signifies to the market that complying organizations take the info privateness of their “as a Service” choices significantly.
Different market options that fall again on main cloud internet hosting suppliers like AWS, Azure and extra to assert SOC 2 compliance will not be as mature or safe as companies which have obtained these certifications independently. CyberArk has all the time been dedicated to offering prospects with essentially the most safe options to suit their wants and attaining SOC 2 Kind 2 compliance is one other proof level for that mission.
A part of the CyberArk PAM as a Service portfolio, Endpoint Privilege Supervisor (EPM) helps organizations scale back the chance of unmanaged administrative entry on Home windows and Mac endpoints. It gives the proper instruments to implement the precept of least privilege and helps to successfully scale back the assault floor and transparently mitigate the chance of a knowledge breach with out impacting productiveness. EPM combines privilege administration, privilege risk safety and quite a few integrations to cut back the chance of malware an infection and lateral motion with out having adversarial impacts on IT and safety groups.
CyberArk Privilege Cloud is constructed to guard, management and monitor privileged entry throughout cloud and hybrid environments. Primarily based on CyberArk’s intensive expertise defending privileged entry, the answer helps organizations effectively handle privileged account credentials and entry rights, proactively monitor and management privileged account exercise and rapidly reply to threats – all with out the necessity to handle further on-premises infrastructure. This contemporary, cloud-based service accelerates time-to-value and leverages cloud economics to effectively and successfully tackle prospects’ privileged entry administration wants.
The current SOC 2 audit signifies that organizations can leverage CyberArk companies’ controls and design to function successfully. The audit additionally confirms that these two companies function successfully and have the requisite service commitments and system necessities primarily based on the “relevant belief companies standards” — making them viable choices for any group wanting to make use of CyberArk as a Service choices. As organizations proceed to development in direction of SaaS functions and safety options, SOC 2 compliance for particular companies could be a place to begin in evaluating SaaS suppliers.
*** This can be a Safety Bloggers Community syndicated weblog from CyberArk authored by Andrew Silberman. Learn the unique publish at: https://www.cyberark.com/weblog/soc-it-2-me-cyberark-achieves-soc-2-type-2-compliance/