BigPanda Achieves SOC 2 Type II Security Attestation
January 25, 2018
Share this

BigPanda successfully completed SOC 2 Type II audit and attestation.

The final report provides BigPanda’s enterprise IT customers with the assurance of corporate controls and processes relating to the security of its products and infrastructure, the availability of systems used to process data, and the confidentiality of information processed by the systems.

In addition to SOC 2 Type II compliance, the BigPanda platform features a robust set of enterprise-class security controls required by Fortune 1000 organizations. These include:

- End-to-end encryption. All customer data is encrypted at all times in BigPanda, in transit and at rest.

- User authentication. BigPanda customers can enforce their corporate security policies using SAML 2.0 compliant Single Sign On.

- Role based access control. RBAC is a flexible yet powerful mechanism to define user roles and associated permissions, thereby ensuring that every user sees only what he or she is entitled to access.

- Strict data segregation. BigPanda’s cloud-native, multi-tenant architecture is designed to strictly segregate both application and integration data from one customer organization to another.

- Physical security. BigPanda benefits from the scale of operations and security compliance of Amazon Web Services data centers which are ISO 27001, PCI and AICPA certified. The platform runs in multiple availability zones and backs up data across regions.

- Security audits. BigPanda continuously runs internal tests and audits, with any noteworthy issues addressed immediately. The company leverages infosecurity firm Include Security to perform complete vulnerability scans of the application on a regular basis.

The Service Organization Control (SOC) 2 Type II is the widely recognized attestation standard issued by the American Institute of Certified Public Accountants (AICPA) which measures a standardized set of security and data practice criteria, requirements and controls. Companies including publicly traded enterprises, financial firms and healthcare organizations have compliance requirements that require SOC 2 audits. BigPanda has committed to an annual review of these practices to ensure continued SOC 2 compliance, which is already underway for 2018.

Share this

The Latest

May 26, 2020

Nearly 3,700 people told GitLab about their DevOps journeys. Respondents shared that their roles are changing dramatically, no matter where they sit in the organization. The lines surrounding the traditional definitions of dev, sec, ops and test have blurred, and as we enter the second half of 2020, it is perhaps more important than ever for companies to understand how these roles are evolving ...

May 21, 2020

As cloud computing continues to grow, tech pros say they are increasingly prioritizing areas like hybrid infrastructure management, application performance management (APM), and security management to optimize delivery for the organizations they serve, according to SolarWinds IT Trends Report 2020: The Universal Language of IT ...

May 20, 2020

Businesses see digital experience as a growing priority and a key to their success, with execution requiring a more integrated approach across development, IT and business users, according to Digital Experiences: Where the Industry Stands ...

May 19, 2020

Fully 90% of those who use observability tooling say those tools are important to their team's software development success, including 39% who say observability tools are very important ...

May 18, 2020

As our production application systems continuously increase in complexity, the challenges of understanding, debugging, and improving them keep growing by orders of magnitude. The practice of Observability addresses both the social and the technological challenges of wrangling complexity and working toward achieving production excellence. New research shows how observable systems and practices are changing the APM landscape ...

May 14, 2020
Digital technologies have enveloped our lives like never before. Be it on the personal or professional front, we have become dependent on the accurate functioning of digital devices and the software running them. The performance of the software is critical in running the components and levers of the new digital ecosystem. And to ensure our digital ecosystem delivers the required outcomes, a robust performance testing strategy should be instituted ...
May 13, 2020

The enforced change to working from home (WFH) has had a massive impact on businesses, not just in the way they manage their employees and IT systems. As the COVID-19 pandemic progresses, enterprise IT teams are looking to answer key questions such as: Which applications have become more critical for working from home? ...

May 12, 2020

In ancient times — February 2020 — EMA research found that more than 50% of IT leaders surveyed were considering new ITSM platforms in the near future. The future arrived with a bang as IT organizations turbo-pivoted to deliver and support unprecedented levels and types of services to a global workplace suddenly working from home ...

May 11, 2020

The Internet of Things (IoT) is changing the world. From augmented reality advanced analytics to new consumer solutions, IoT and the cloud are together redefining both how we work and how we engage with our audiences. They are changing how we live, as well ...

May 07, 2020

Despite IT professionals' confidence in their ability to support today's much greater dependence on digital services, there is a rise in application performance errors reported by more than half of consumers, according to the Impact of COVID-19 on Digital Transformation survey from xMatters ...