Articles

Athenian is Now SOC 2 Type 2 Compliant!

by
Marcelo Novaes
July 21, 2022

Today we are proud to announce that Athenian has been formally attested as SOC 2 Type 2 compliant for how we securely manage user data based on our service and organizational controls. The audit was performed by independent auditor Hancock Askew & Co, a US-based audit firm with over 100 years of tradition.

Security at the core of Athenian

To deliver on our mission towards the continuous improvement of engineering organizations we first must earn the trust of the best engineering organizations worldwide and keep them safe during the lifelong journey together.

The Athenian was built from the ground up with security in mind. Security, data protection, privacy and transparency are fundamental to our business and to our customers' businesses and a permanent commitment of all Athenians—and we are proud of that.

What does that mean for our current and future customers?

The SOC 2 Type 2 report without exceptions is a badge of excellence and formal evidence of Athenian's commitment to securely handling customers' data and keeping it safe under the highest industry standards. Simply put: you can trust Athenian with your data.

What is a SOC 2® Type 2 report?

It is an assessment performed by independent auditors on evaluating Service and Organization Controls (SOC) for how a service provider handles sensitive information, based on the Trust Services Criteria (TSC) from the American Institute of Certified Professional Accountants (AICPA). 

The Trust Services Criteria evaluate and report on controls over the security, availability, processing integrity, confidentiality, or privacy over information and systems.

A SOC 2 Type 2 report provides rigorous evidence that an organization is implementing the security controls they say they are and that those controls are working correctly continuously over a period of time to protect sensitive data.

What's in the report?

The SOC 2 Type 2 audit report covers:

  • The assessment by the independent auditors
  • Overview of Athenian operations, services provided, systems and its components
  • Relevant aspects of the control environment, risk assessment, information, communication, monitoring
  • Trust services criteria, list of controls and results of independent testing

What's next?

This is one more step Athenian takes to ensure secure and reliable services to our customers. Not only that, but Athenian has its systems and personnel monitored for its SOC 2 controls in real-time through security compliance platform Vanta.

More information about how we take security measures and requests for our security documentation, including our SOC 2 Type 2 report can be found in our Security Page.

Ready to level up your engineering organization with Athenian? Let’s get started!