New Relic, Inc., the SaaS-based cloud application performance management company, today announced that it has been certified as SOC 2 compliant by the American Institute of CPAs (AICPA). This third-party certification enables development, operations, and devops teams who use New Relic to verify that New Relic meets strict security audit requirements. SOC 2 compliance also combines with other security features and best practices to make New Relic a powerful, secure SaaS app management solution.
SOC 2 is a standard created by the AICPA that enables SaaS and Cloud vendors to report to their customers the extent to which their services are protected against unauthorized access and that data is available when needed. New Relic has received its SOC 2 certification and is now able to report compliance with the standard to its customers.
Compliance with the SOC 2 standard adds to New Relic’s existing set of security features and best practices to make it a robust solution for any security-minded dev, ops, and devops teams. For example, the infrastructure that runs the New Relic service and stores customer data resides in a Tier III, SSAE 16 certified data center. New Relic also performs continuous security scanning on both the network and New Relic app itself to ensure the service and servers remain secure. It masks potentially sensitive customer data by default and is TRUSTe certified. New Relic also self certifies with the U.S-EU Safe Harbor Framework.
“The SOC 2 audit process allows us to hold ourselves accountable to AICPA’s Trust Services Principles and Criteria,” said Shaun Gordon, New Relic’s director of information security and compliance. “With this third-party certification completed, we can provide both ourselves, and more importantly, our customers, an independent, third-party assurance that we have taken the appropriate steps to protect our systems and our customers’ data.”