Strata Identity Achieves SOC 2 Type I Certification for Multi-Cloud Identity Orchestration Platform

BOULDER, Colo.--(BUSINESS WIRE)--Strata Identity, the Identity Orchestration company, today announced it has received a System and Organization Controls (SOC) 2 Type I certification. The report validates that Strata’s Maverics Identity Orchestration platform has implemented and maintains effective system-level controls to protect its customers’ and partners’ sensitive data and ensure the integrity of its systems.

SOC 2 is an auditing standard developed by the American Institute of Certified Public Accountants (AICPA) to assess the effectiveness of an organization's controls over information security, availability, processing integrity, confidentiality, and privacy. SOC 2 Type 1 measures an organization’s systems and controls and evaluates the design and implementation of these controls to ensure they are suitably designed to meet the relevant trust services criteria.

“SOC 2 is one of the leading and most respected standards for assessing system and data security and privacy controls,” said Topher Marie, Co-Founder and Chief Technology Officer of Strata Identity. “This certification provides our customers with third-party validation that Strata Identity has implemented security controls that meet and exceed the requirements established by the American Institute of CPAs.”

The SOC 2 Type 1 audit was conducted by independent audit firm A-LIGN Assurance which reviewed Strata’s control environment, performed testing procedures, and issued a report detailing the scope of the review, the controls tested, and the testing results. The report assures stakeholders that Strata has implemented effective controls to protect sensitive data and ensure the integrity of its systems.

About Strata

Strata Identity is the leader in Identity Orchestration for hybrid and multi-cloud environments. The orchestration recipe-powered Maverics platform enables organizations to integrate and control incompatible identity systems without changing the user access experience. By decoupling applications from identity, Maverics makes it possible to implement modern authentication, like passwordless, and enforce consistent access policies without refactoring source code. The company’s founders created the IDQL (Identity Query Language) standard and Hexa open-source software for multi-cloud policy orchestration and are co-authors of the SAML standard for SSO federation. For more information, visit us on the Web and follow us on LinkedIn and Twitter.