strongDM has its posture and controls on security, confidentiality, and availability tested by an independent firm at least annually. We are SOC 2 Type 2, certified by a national audit firm, and are investigating other compliance programs to further enhance our Information Security Program.
To make it easy for prospects and customers to evaluate our security posture and practices, we have a number of documents publicly available:
- Vendor Security Alliance CORE Questionnaire
- Cloud Security Alliance CAIQ (available Q4 2021)
In addition, customers and prospects can be provided copies of the following documents on request and under mutual NDA:
- Most recent SOC 2 Type 2 report
- Most recent pentest and response
- Most recent Disaster Recovery Test report
- Most recent Executive Summary of Risk
Please contact your strongDM Account Executive or Customer Success Manager and they’ll kick off the process internally.