ForgeRock’s Identity Cloud platform has officially received SOC 2 Type 1 certification. The SOC 2 standard applies to public-facing service organizations, and speaks to an organization’s security and data processing capabilities.
The new certification indicates that ForgeRock is able to protect the privacy and personal information of the people in the Identity Cloud system. The distinction is based on standards established by the American Institute of Certified Public Accountants (AICPA).
“ForgeRock is committed to ensuring our customer’s data is managed with the highest standard of security and compliance,” said ForgeRock CISO Russ Kirby. “Our SOC 2 Type 1 certification reinforces our leadership position in the industry as a trusted partner to our customers and the nearly three billion identities under management globally.”
The news comes several months after ForgeRock achieved ISO 27001 certification, and provides yet more evidence of the company’s strong security posture. The Identity Cloud itself is a Software-as-a-Service solution that is designed for access control. Enterprises can use it to manage employee access to both cloud and on-premises applications across multiple locations, and can customize the platform based on the particular needs of their organization.
In June, ForgeRock released a new ForgeRock Go feature that enabled passwordless authentication for Identity Cloud users. The feature allows people to log into various accounts with any authentication factor that supports the FIDO Alliance’s WebAuthn standard.
ForgeRock joined the Microsoft Intelligent Security Association in September. Acuant and Yoti, meanwhile, are some of the other identity providers that boast SOC 2 Type 1 certification.