Trust Center

Start your security review
View & download sensitive information
Search items

Overview

Security is a part of our identity here at Nasuni. With a dedicated security team with various certifications and years of experience, you can rest assured that we take security seriously.

Nasuni has adopted the Secure Controls Framework (SCF) with controls mapped to NIST 800-53, CSA CCM, SOC2, and ISO 27001:13.

Use this page for an overview of Nasuni's information security capabilities.

Compliance

CCPA Logo
CCPA
CSA STAR Logo
CSA STAR
HIPAA Logo
HIPAA
ISO 27001 Logo
ISO 27001
ISO 27001 SoA Logo
ISO 27001 SoA
Start your security review
View & download sensitive information

Nasuni is reviewed and trusted by

American Standard Brands-company-logoAmerican Standard Brands
CBRE-company-logoCBRE
Cushman & Wakefield-company-logoCushman & Wakefield
E*Trade Financial-company-logoE*Trade Financial
McLaren Construction Group-company-logoMcLaren Construction Group
Morton Salt-company-logoMorton Salt
Western Digital-company-logoWestern Digital
TBWA Worldwide-company-logoTBWA Worldwide
Pernod Ricard-company-logoPernod Ricard
Ramboll-company-logoRamboll
Penspen-company-logoPenspen

Documents

HIPAA Report
Pentest Report
SOC 2 Report Type II
TOMS Statement
ISO 27001
ISO 27001 SoA
CAIQ V4 - 4.0.4

Risk Profile

Data Access LevelRestricted
Impact LevelSevere
Critical DependenceYes
View more

Product Security

Data Security
Integrations
Multi-Factor Authentication
View more

Reports

HIPAA Report
Pentest Report
SOC 2 Report Type II
View more

Self-Assessments

CAIQ V4 - 4.0.4

Data Security

Access Monitoring
Backups Enabled
Data Erasure
View more

App Security

Code Analysis
Secure Development Training
Software Development Lifecycle
View more

Access Control

Data Access
Logging
Password Security

Infrastructure

Amazon Web Services
Anti-DDoS
BC/DR
View more

Endpoint Security

Disk Encryption
Endpoint Detection & Response
Mobile Device Management

Network Security

Data Loss Prevention
Firewall
IDS/IPS
View more

Corporate Security

Asset Management Practices
Employee Training
HR Security
View more

Policies

Acceptable Use Policy
Access Control Policy
Asset Management Policy
View more

Security Grades

Qualys SSL Labs
nasuni.com
A+

Trust Center Updates

SOC 2 Type II

ComplianceCopy link

With great excitement, on October 11th, 2023, Nasuni completed our SOC2 Type II audit covering December 21, 2022 to September 30, 2023. The full report is available in the Trust Center for download under NDA. This report also includes our HIPAA certification.

Published at N/A

Pen Test

ComplianceCopy link

Nasuni recently underwent our 2023 Web Application and API Penetration Test. and the results are now available in the Trust Center.

Published at N/A

OpenSSL 3.x Vulnerability

IncidentsCopy link

Nasuni Customers,

On October 25th, 2022, OpenSSL announced a critical vulnerability for OpenSSL Version 3.x. While Nasuni leverages OpenSSL, we have reviewed and determined that the versions of OpenSSL used in all of our products and services are not impacted by this vulnerability. If you have any questions, please reach out to Nasuni Support.

Published at N/A

SOC2 Type 1 - Update

ComplianceCopy link

As update to Nasuni to achieving our SOC2Type1 certification. We have completed our readiness assessment and confirmed that we are in good shape to pass our audit in December with little challenge. Once we get the certification back from the auditors, Nasuni will post it on the portal and at the same time post an update on this portal. The plan for SOC2Type2 is to have that audit completed after the mandatory 90-day observation period has lapsed.

Published at N/A

Welcome to the Nasuni Information Security Trust Center

GeneralCopy link

As an organization that is security conscious and values security, we are excited to announce the official launch of the Nasuni Trust Center. By using this portal, you can request access to our compliance documents, review our standardized questionnaires such as the CAIQ and gain a general understanding of our security posture.

Over time, our team will be making changes to this portal as we implement new tools and processes in our environment. You can use the Subscribe button to receive email notifications for when our team has an important update, such as if we have an updated compliance report or if we have a status update regarding a major security vulnerability that has been recently discovered.

-The Nasuni Information Security Team

Published at N/A

If you think you may have discovered a vulnerability, please send us a note.

Powered bySafeBase Logo