ACWORTH, GA, January 3, 2025 – FortifyData an automated cybersecurity risk management and Cyber GRC platform today announced the successful completion of the System and Organization Controls (SOC) 2 Type II audit, achieving compliance with the leading industry standards for customer data security. The report highlights FortifyData’s ongoing commitment to providing a secure data environment for its customers.
“FortifyData’s SOC 2 Type II attestation provided an excellent review of our policies and procedures,” said Victor Gamra, CEO of FortifyData. “With the ever-changing threat landscape and increase in cyberattacks on organizations, this independent audit provides our customers with third-party validation that FortifyData is an exceptional choice for businesses that require certified providers.”
Achieving this certification marks not an end point, but a milestone in our ongoing commitment to security. We integrate security into every stage of development and invite our customers and partners to hold us accountable for delivering on our promises of security, performance, and availability.
The examinations were conducted by The Moore Group, CPA LLC an independent auditing firm, in accordance with the American Institute of Certified Public Accountants (AICPA) and attested that information security controls meeting the leading industry standards for security and availability.
What is a SOC 2?
The System and Organization Controls (SOC) II audit represents a benchmark for information security compliance globally. Developed by the American Institute of CPAs (AICPA), this framework enables third-party auditors to assess a service organization’s internal controls concerning information security. Our SOC 2 Audited Report reflects the auditor’s evaluation of how FortifyData’s security measures align with or surpass the SOC 2 standards.
In achieving compliance, a third-party auditor rigorously examined our internal controls, including policies, procedures, infrastructure, data security, firewall configurations, change management, logical access, backup and disaster recovery, and security incident response. We also conducted extensive penetration testing on our infrastructure to maintain our proactive stance against evolving security threats. Our customers can have full confidence that FortifyData is securely managed, and we remain committed to continuously enhancing the security of the FortifyData platform.
SOC 2 Type II compliance demonstrates that the security controls we have in place are not only designed appropriately but are also executed consistently over time. This provides solid evidence of our operational effectiveness and our commitment to maintaining high-security standards.
With the diligent efforts of the entire FortifyData team, we are proud to have received an Auditor’s Report that confirms our compliance and details how our practices meet or exceed the requirements of the AICPA SOC 2 Type II.