Attestation reaffirms Quest’s commitment to customer data security according to the highest standards in the industry
ALISO VIEJO, CALIF. – December 14, 2022 – Quest Software, a global systems management, data protection and security software provider, today announced it has successfully completed Type 2 System and Organizational Controls (SOC) 2 attestation for its Azure-hosted software platform, Quest On Demand, reinforcing its commitment to customer data security according to the industry’s highest standards.
This attestation comes at a time when security leaders are facing significant security threats to the software supply chain. Gartner estimates that by 2025, 45% of organizations worldwide will have experienced attacks on their software supply chains – a threefold increase from 2020.
“In today’s market, businesses require assurance that their software supply chain is secure and their customers’ data is safe,” said Sergey Medved, VP of Product Management and Marketing at Quest Software. “Type 2 SOC 2 attestation is the latest step we are taking to give Quest On Demand users, including those working with Azure Active Directory and Microsoft 365, peace of mind as they consolidate, modernize and secure their IT environments.”
The examination also confirms that Quest On Demand maintains a high level of information security by meeting the Trusted Service category of security pertaining to customer data. Quest On Demand is protected with industry-grade practices against unauthorized access, data theft and damage to the integrity and privacy of security and operational systems.
“Since the inception of Quest On Demand, security has been at the core of the Quest R&D Software Development Lifecycle practices to secure the software supply chain and minimize risks to our customers,” said Olivier Le Rudulier, CISSP, CSSLP, Head Of Product Security & Distinguished Engineer at Quest Software. “This new milestone reflects Quest’s continued commitment to meeting the highest industry standards for security.”
Type 2 SOC 2 attestation was developed by the American Institute of CPAs (AICPA). For Quest, it was provided by Shellman & Company, LLC, an independent third-party, after a six-month audit that reviewed the operating effectiveness of Quest On Demand’s robust information security and privacy management practices.
In addition to AICPA Type 2 SOC 2, Quest On Demand application development lifecycle, delivery, and support are covered under ISO 27001, 27017 and 27018 certificate number 1156977-3, demonstrating continued dedication to industry standards.
To learn more about Quest On Demand, please visit https://www.quest.com/on-demand/.