BOSTON — February 20, 2018 — Threat Stack, provider of the industry’s most comprehensive intrusion detection platform for cloud, hybrid-cloud, and on-premise environments, today announced that it has successfully completed a Type 2 SOC 2 Service Organization Control (SOC 2) examination for its flagship Threat Stack intrusion detection platform and Oversight managed service. The audit conducted by Schellman & Company, LLC found that Threat Stack meets the SOC 2 standards for Security and Availability Trust Services Principles with zero exceptions listed.
SOC 2 reports are attestation reports that examine controls at a service organization relevant to the security, availability, or processing integrity of a system (security, availability, and/or processing integrity principles) or the confidentiality or privacy of the information processed for the user entities (confidentiality or privacy principles). SOC 2 reports demonstrate a company’s ability to not only implement critical security policies but also prove compliance over an extended period of time.
“As a security company that helps customers with SOC 2 compliance, we feel it is important that we lead by example and complete the examination ourselves,” said Brian M. Ahern, Threat Stack Chairman and CEO. “Successfully completing Type 2 SOC 2 with zero exceptions listed demonstrates to our clients that our platform can be trusted to adhere to strenuous compliance standards and also our own commitment to utilizing best security practices internally.”
Type 2 SOC 2 standards help companies recognize, communicate, and exercise cross-functional value among DevOps and security teams. Threat Stack implemented new policies and technologies to fortify its infrastructure and instill security in every phase of product development. The company used preparing for Type 2 SOC 2 as an opportunity to better integrate its security team within its DevOps practices. The internal team used the company’s flagship solution to help with the examination and also demonstrate Threat Stack’s security posture for any ongoing audit.
About Threat Stack
Threat Stack enables growth-driven companies to scale securely and meet complex cloud security needs by identifying and verifying insider threats, external attacks, and data loss in real time. Purpose built for today’s infrastructure, Threat Stack’s comprehensive intrusion detection platform combines continuous security monitoring and risk assessment to empower security and operations to better manage risk and compliance across their entire infrastructure, including cloud, hybrid cloud, and multi-cloud.
For more information, or to start a free cloud security trial, visit threatstack.com.
Tim Morin, 617-986-5015