SecurityWorldMarket

19/09/2024

Axis achieves SOC2 Type 1 attestation for cloud solutions

Chelmsford, Ma (USA)

Axis Communications has achieved the System and Organization Controls (SOC 2) Type 1 attestation for its cloud-based solutions, Axis Cloud Connect and Axis Device Manager Extend.

The audit, conducted by an independent third-party auditor, confirms that Axis has implemented robust cloud security controls and practices that meet the stringent criteria set forth by the American Institute of Certified Public Accountants (AICPA), which include data security, availability, confidentiality, processing integrity and privacy. Axis will continue to monitor the performance of those controls over time, with the goal of completing a Type 2 attestation within the next 6 months.

“SOC 2 is a voluntary yet important compliance which validates our work and lets our partners and customers know how serious we are about cloud security,” said Patrik Pettersson, Axis Communications’ senior manager of future business and strategic initiatives. “The attestation specifically evaluates the design of security controls, ensuring that our cloud-based solutions and services—such as Axis Cloud Connect—are held to the highest standards. A strong SOC 2 report demonstrates our commitment to cyber security, giving our customers and partners the peace of mind that their data is protected using internationally recognized data management and cyber security best practices.”

Cloud-based platform enables a range of managed services

Axis Cloud Connect is an open cloud-based platform designed to provide more secure, scalable and flexible security solutions. Introduced in April 2024, this platform works together with Axis devices to enable a range of managed services, from Axis and its partners, that support system and device management, facilitate video and data delivery and meet high demands for cyber security. Designed to be channel-friendly, Axis Cloud Connect—and Axis offerings built on the platform—not only presents solutions and services for system integrators and their customers, but it also enables Axis partners to develop their own cloud-based solutions. 

Unified interface for proactive device management

And, according to the company, it is with the same focus on cyber security, flexibility and scalability, that Axis sought and attained SOC 2 Type 1 attestation for Axis Device Manager Extend software: a unified interface for proactively managing devices and sites from anywhere. Axis Device Manager Extend, which is built on Axis Cloud Connect, delivers instant insights to effectively manage assets and keep track of devices across their lifecycle via real-time product information, device configuration, software and firmware updates, and video analytics management.

Both Axis Device Manager Extend and Axis Cloud Connect have met stringent Type 1 requirements, attesting to proper security control design and point-in-time functionality. Over the next 6 months Axis expects to achieve Type 2 compliance for Axis Cloud Connect and Axis Device Manager Extend—confirming their effective performance over an extended duration. With a growing number of businesses embracing cloud computing and hybrid-cloud environments, it is important for vendors to demonstrate that cloud security is a priority.

Since SOC 2 is the most widely recognised cloud security framework in the U.S., it allows organisations to quickly and easily gauge the security capabilities of potential partners or vendors. Axis’ strong SOC 2 Type 1 attestation, and current Type 2 audit, underscore the company’s commitment to keeping customer devices and data protected, no matter where they live.

Essential baselines

“Axis Cloud Connect and Axis Device Manager Extend were developed with robust security measures in place, so we were already well-positioned to meet most SOC 2 criteria,” said Wayne Dorris, CISSP, program manager, cyber security at Axis Communications. At Axis, we consider certifications, industry standards, and of course regulatory compliance measures, as essential baselines from which to build upon. We aim for the highest degree of security because there’s a lot at stake, and trust is essential to success. From AICPA SOC 2 attestation to our recent NIST FIPS 140-3 certification, we’re pleased to continue to provide our customers with market-leading solutions that not only prioritise innovation and performance, but cyber security as well.”



Product Suppliers
Back to top