We at Valence Security are extremely pleased to announce that we have successfully completed System and Organization Controls (SOC) 2 Type II certification for our first-of-its-kind platform for securing the SaaS-to-SaaS supply chain.
The SOC 2 audit process included an extensive evaluation of our security processes and controls, the development best practices our engineers have implemented, and the ongoing activities we carry out to ensure our platform and customers' data is secure.
This tremendous step, taken so soon after our initial product launch in 2021, shows our dedication and commitment to not only securing our customers’ mesh of SaaS-to-SaaS third-party integrations, but also to maintaining effective controls over the security, availability, and confidentiality of our platform and our customers' data in accordance with attestation standards established by the American Institute of Certified Public Accountants (AICPA).
“SOC 2 Type II certification provides our customers with confidence that we maintain rigorous controls to secure our platform and their data,” said Shlomi Matichin, Co-founder and CTO of Valence. “As a company dedicated to securing SaaS-to-SaaS third-party integrations and helping customers build trust in their SaaS vendors, completing this key certification has been a top priority for us since the beginning of our journey and we are proud to have achieved this in record time.”
As part of our commitment to the highest security and governance standards, in addition to implementing the standard SOC 2 Type II requirements, we have implemented advanced security controls to ensure we earn our customer trust such as multi-tenancy, zero trust access to production, and continuous audit trail capabilities. As part of the process, we were able to quickly remediate and respond to every potential security risk that was detected. Security is part of our DNA and always a top priority.
Going forward, we will be enhancing compliance with additional security and privacy standards to provide our customers with confidence in our commitment to the security of our platform, their SaaS-to-SaaS third-party integrations, and their business critical data.
About Valence Security
Valence is the first security platform that enables organizations to enforce zero trust controls on the rapidly expanding mesh of shadow third-party integrations connected to their sanctioned business critical SaaS apps. The platform ensures continuous compliance by automating the enforcement of least privilege access and revocation of unnecessary access across all of an organization’s API tokens, OAuth third-party apps, and no/low code workflows.