We’re pleased to announce that Zenhub has received its SOC 2 Type I audit certification this month! We know that security is mission critical to all our customers. That’s why we have a team that’s dedicated to regularly reviewing regulatory compliance and ensuring that our product and our infrastructure is meeting (or exceeding) industry standards when it comes to networking, encryption, auditing, logging, monitoring, backups and intrusion detection.
Our journey towards SOC 2 compliance actually started many years ago. It all started with a strong set of fundamental principles. We believe in the principle of least privilege and making security a first class citizen through a number of automated monitoring systems and coding best practices. These ideas and principles were used to build the foundation of Zenhub’s infrastructure and tech stack, and is what allowed us to feel confident going into the SOC 2 audit. With help from the team at Vanta, we got our certification in April 2022.
What is SOC2 Type 1 certification?
A SOC 2 Type 1 Report is a Service Organization Control (SOC) audit on how a cloud-based service provider handles sensitive information. It covers the suitability of an organization’s controls and practices.
Achieving SOC2 Type 1 accreditation means that our infrastructure, development practices, and management processes meet (or exceed) required levels of oversight and monitoring, and that we can detect and address issues quickly and reliably.
We are working on completing our SOC 2 Type 2 audit later this quarter, which will further validate our controls and security framework and attest to our operational effectiveness. Our goal is to continue providing regular security updates to you and your IT engineers so that your team can sleep well at night knowing that you data is safe and secure.