DSPM Platform Achieves SOC 2 Type II Compliance

Abhinav Singh
October 17, 2023

Normalyze achieved SOC 2 Type II compliance and renewed its SOC 2 Type II certification with an unqualified opinion for the second consecutive year.

Normalyze passed audits in all five Trust Service Criteria under SOC 2: Security, Availability, Process Integrity, Confidentiality, and Privacy. Compliance is in accordance with American Institute of Certified Public Accountants (AICPA) standards for SOC for Service Organizations, also known as SSAE 18. Achieving this standard serves as third-party industry validation that Normalyze provides enterprise-level security for customer data secured on the Normalyze Cloud Platform.


Trust and Transparency

Obtaining an unqualified opinion on a SOC 2 Type II audit report demonstrates that Normalyze security controls are effective and well-managed. This transparency builds trust with customers and prospects, assuring them that their data is in safe hands when using Normalyze DSPM services.

Compliance is not just a box to check; it represents a comprehensive commitment to data security and compliance. Renewing  SOC 2 compliance reinforces an organization’s dedication to safeguarding customer data and maintaining high-security standards in its operations.

Prescient Assurance, a leader in security and compliance attestation for B2B and SaaS companies worldwide, performed the audit. Prescient Assurance is a registered public accounting in the US and Canada and provides risk management and assurance services which includes but is not limited to SOC 2, PCI, ISO, NIST, GDPR, CCPA, HIPAA, and CSA STAR.

Abhinav Singh

Abhinav leads security research at Normalyze. He has previously worked for companies like AWS, Netskope & JPMorgan. His contributions to the security community include International books, academic papers, patents, and blogs. He is an active speaker and trainer at conferences like Blackhat, DEF CON & RSA.