Security Portal

Get access to this Security Portal
  • Review sensitive security details
  • Unlock documents
  • Submit security questionnaires
  • Ask for more information
Had access before? Reclaim access

Overview

strongDM's Security & Compliance Programs are rooted in providing our Customers with the most secure infrastructure access platform on the market. If you have further questions beyond the information provided here, please reach out to your sales representative, or your Customer Success Manager at csm-team@strongdm.com. If you're interested in the strongDM Platform, and how it can solve your Infrastructure Access problems, please reach out to sales@strongdm.com

Compliance

SOC 2 Logo
SOC 2
Get access to this Security Portal
  • Review sensitive security details
  • Unlock documents
  • Submit security questionnaires
  • Ask for more information
Had access before? Reclaim access

strongDM is reviewed and trusted by

BenevityBenevity
CoveoCoveo
BrazeBraze
OliveOlive
AppDirectAppDirect
ASICSASICS
BettermentBetterment
ClickUpClickUp
PepsiCoPepsiCo
SentinelOneSentinelOne
SoFiSoFi
ChimeChime
YextYext
StackAdaptStackAdapt
SailPointSailPoint
OODA HealthOODA Health
Sequoia CapitalSequoia Capital
Bloom CreditBloom Credit
HootsuiteHootsuite
PelotonPeloton

Documents

All
Public
Private
Disaster Recovery Report
Network Diagram
Pentest Report
SOC 2 Report
CAIQ Lite
SIG Lite
VSA Core
Cyber Insurance
Data Processing Agreement
Access Control Policy
Information Security Policy
Other Policies
Risk Management Policy

Risk Profile

Data Access LevelRestricted
Impact LevelSubstantial
Recovery Time Objective< 12 Hours
See more

Product Security

Audit Logging
Data Security
Integrations
See more

Reports

Disaster Recovery Report
Network Diagram
Pentest Report
See more

Self-Assessments

CAIQ
CAIQ Lite
SIG Lite
See more

Data Security

Access Monitoring
Backups Enabled
Encryption-at-rest
See more

App Security

Code Analysis
Credential Management
Responsible Disclosure
See more

Legal

Platform Subservice ProvidersMailchimpAmazon
Cyber Insurance
Data Processing Agreement
See more

Access Control

Data Access
Logging
Password Security

Infrastructure

Status Monitoring
Amazon Web Services
Anti-DDoS
See more

Endpoint Security

Disk Encryption
Endpoint Detection & Response
Mobile Device Management

Network Security

Firewall
IDS/IPS
Security Information and Event Management
See more

Corporate Security

Email Protection
Employee Training
HR Security
See more

Policies

Access Control Policy
Information Security Policy
Other Policies
See more

Security Grades

SecurityScorecard
strongdm.com
Qualys SSL Labs
StrongDM Platform AdminUI
A+
StrongDM Platform API
A+
Security Headers
StrongDM Platform AdminUI
A

Trust Center Updates

Security Portal Updates

ComplianceCopy link

2022 Penetration Test Report Now Available

We are happy to announce the successful completion of a comprehensive penetration test of StrongDM's Platform AdminUI and API (also known as the "Control Plane").

In 2022, StrongDM engaged Cobalt Labs to conduct a gray-box penetration test and we are proud to present the results of this test in the 2022 Control Plane Penetration Test Combined Report.

Published at N/A

Newsworthy Vulnerability Updates

GeneralCopy link

The OpenSSL Project has announced the availability of a security update (version 3.07) that addresses a vulnerability affecting OpenSSL versions 3.0 and above (3.0.0 - 3.0.6).

The two CVE's are listed below:

Response
StrongDM's Trust teams have enumerated the services that could be affected by these vulnerabilities, and no vulnerable versions of the OpenSSL software were found.

Published at N/A*

If you think you may have discovered a vulnerability, please send us a note.

Report Issue