Virtualization Technology News and Information
Article
Search:
RSS
Follow VMblog.com:
Improve end user experience in VDI, DaaS and physical endpoint environments
Blumira Achieves Service Organization Control (SOC) 2 Type 2 Certification
Blumira announced it is officially SOC 2 Type 2 certified following the successful completion of its Type 2 examination. Blumira's cloud security information and event management (SIEM) helps organizations of all sizes with limited security resources detect and respond to cybersecurity threats faster to stop ransomware and breaches.

To achieve this critical third-party assessment, Blumira underwent a rigorous independent audit performed by certified public accountant (CPA) firm ByteChek Assurance to ensure that Blumira's security protocols and use of data meet the strict data security requirements established by the American Institute of CPAs (AICPA). SOC 2 is a reporting framework for service organizations, developed by the AICPA, that specifies how organizations should manage customer data, based on the following Trust Services Criteria: security, availability, processing integrity, confidentiality, and privacy. This certification builds on Blumira completing its SOC 2 Type 1 examination in October 2021.

"We are proud to achieve SOC 2 Type 2 compliance," said Matt Warner, CTO and Co-Founder of Blumira. "Our team is dedicated to preserving the security and integrity of our customers' data. Successfully completing the SOC 2 examination shows our customers, partners, and the market at large the importance we place on security and building a cybersecurity product that customers can trust. As new compliance standards emerge and regulations become more strict, this is becoming increasingly important."

Blumira's SOC 2 Type 2 report provides detailed information and assurance about the security, availability, and integrity of the systems used to process users' data, and the confidentiality and privacy of the information those systems process. These reports help customers, MSPs, and partners assess Blumira's systems and the suitability of the design of the company's controls, as they can gain insight into Blumira's security processes, internal governance and risk management processes, and regulatory oversight.

Commitment to compliance

Blumira is committed to security, reliability, and compliance within its internal organization, and Blumira's team is committed to helping customers and partners understand and achieve compliance regulations quickly and easily. Blumira's platform helps organizations meet compliance, such as the updated Federal Trade Commission (FTC) Safeguards Rule. Business and IT leaders must prioritize implementing solutions and processes to meet these new requirements, with the impending deadline of December 9, 2022. 

Blumira's platform helps companies meet additional compliance requirements, including Cybersecurity Maturity Model Certification (CMMC), National Institute of Standards in Technology (NIST), Payment Card Industry Data Security Standard (PCI DSS), HIPAA, Federal Financial Institutions Examination Council (FFIEC), Center for Internet Security (CIS), and more by providing:

 At least one year of log data retention

  • Audit trails, with data encrypted at rest and in transit
  • Monitoring of unauthorized activity, with fast detection (under a minute for real-time detections) and response

Customers recognize and value Blumira's ability to help them meet compliance controls, save time on security tasks, focus on real threats, and protect against breaches. Blumira customer Mike Morrow, Technical Infrastructure Manager for Ottawa County, said, "We're required by CJIS and IRS Pub 1075 compliance to review our logs daily. Blumira has saved us time because we can't monitor all of our logs-we would need a team of 100 to go through all of these logs manually."

Going Beyond Compliance

Blumira's cloud-based SIEM platform combines logging with automated detection and response for better security outcomes and consolidated security spend. The platform includes threat intelligence feeds, threat hunting, continuously updated detection rules, honeypots, both automated and guided playbooks for response, and at least one year of data retention with quick access to reports needed to meet compliance requirements.

Blumira can help organizations without dedicated security teams or expertise meet compliance regulations, streamline security, focus on real threats, and protect against breaches.

Published Wednesday, October 12, 2022 5:10 PM by David Marshall
Filed under:
Get This Featured White Paper: Mind the Gap: Understanding the threats to your Microsoft 365 data
You may also be interested in this white paper: The Guide to Choosing Backup Storage
Comments
There are no comments for this post.
To post a comment, you must be a registered user. Registration is free and easy! Sign up now!
Customer Connect
Global Digital
DTX
DTW-NA
innovatrix
GISEC
global-digital-cx
vExpert
Calendar
<October 2022>
SuMoTuWeThFrSa
2526272829301
2345678
9101112131415
16171819202122
23242526272829
303112345