Quest Software, a global provider of systems management, data protection and security software, announced today that it has successfully completed Type 2 System and Organizational Controls (SOC) 2 verification for its Azure-hosted Quest On Demand software platform, marking its commitment for customer data affirms security to the highest industry standards.
This certification comes at a time when security leaders face significant security threats to the software supply chain. Gartner estimates that by 2025, 45% of companies worldwide will have experienced attacks on their software supply chains – triple the 2020 level.
“In today’s market, companies need peace of mind that their software supply chain is secure and their customers’ data is secure,” said Sergey Medved, VP of Product Management and Marketing at Quest Software. “Type 2 SOC 2 attestation is the latest step we are taking to provide peace of mind for Quest On Demand users, including those working with Azure Active Directory and Microsoft 365, as they manage their IT environments consolidate, modernize and secure.”
The audit also confirms that Quest On Demand maintains a high level of information security by meeting the Trusted Service security category with respect to customer data. Quest On Demand is protected against unauthorized access, data theft, and compromise of security and operating system integrity and privacy using industry-standard practices.
“Since the launch of Quest On Demand, security has been at the core of Quest R&D Software Development’s lifecycle practices to secure the software supply chain and mitigate risk for our customers,” said Olivier Le Rudulier, CISSP, CSSLP, Head of Product Security & Distinguished Engineer at Quest Software. “This new milestone reflects Quest’s continued commitment to meeting the highest security standards in the industry.”
The Type 2 SOC 2 attestation was developed by the American Institute of CPAs (AICPA). It was provided to Quest by Shellman & Company, LLC, an independent third party, after a six-month audit that verified the operational effectiveness of Quest On Demand’s robust information security and privacy management practices.
In addition to AICPA Type 2 SOC 2, Quest On Demand application development lifecycle, delivery and support are covered by ISO 27001, 27017 and 27018 certificate number 1156977-3, demonstrating ongoing commitment to industry standards.
