Security Portal

Overview

Security is a part of our identity here at Nasuni. With a dedicated security team with various certifications and years of experience, you can rest assured that we take security seriously.

Nasuni has adopted the Secure Controls Framework (SCF) with controls mapped to NIST 800-53, CSA CCM, and ISO 27002:13.

Use this page for an overview of Nasuni's information security capabilities.

Compliance

CCPA

CSA STAR

HIPAA

ISO 27001

ISO 27001 SoA

SOC 2

Nasuni is reviewed and trusted by

American Standard Brands

CBRE

Cushman & Wakefield

E*Trade Financial

McLaren Construction Group

Morton Salt

Urban Outfitters

Western Digital

TBWA Worldwide

Pernod Ricard

Ramboll

Penspen

Documents

All

Public

Private

Pentest Report

TOMS Statement

ISO 27001

ISO 27001 SoA

CAIQ

Risk Profile

Data Access LevelRestricted

Impact LevelSevere

Critical DependenceYes

Product Security

Data Security

Integrations

Multi-Factor Authentication

Reports

Pentest Report

TOMS Statement

Self-Assessments

CAIQ

Data Security

Access Monitoring

Backups Enabled

Data Erasure

App Security

Code Analysis

Secure Development Training

Software Development Lifecycle

Legal

Subprocessors

Cyber Insurance

Data Processing Agreement

Access Control

Data Access

Logging

Password Security

Infrastructure

Amazon Web Services

Anti-DDoS

BC/DR

Endpoint Security

Disk Encryption

Endpoint Detection & Response

Mobile Device Management

Network Security

Data Loss Prevention

Firewall

IDS/IPS

Corporate Security

Asset Management Practices

Employee Training

HR Security

Policies

Acceptable Use Policy

Access Control Policy

Asset Management Policy

Security Grades

Qualys SSL Labs

nasuni.com

A+

Trust Center Updates

OpenSSL 3.x Vulnerability

IncidentsCopy link

Nasuni Customers,

On October 25th, 2022, OpenSSL announced a critical vulnerability for OpenSSL Version 3.x. While Nasuni leverages OpenSSL, we have reviewed and determined that the versions of OpenSSL used in all of our products and services are not impacted by this vulnerability. If you have any questions, please reach out to Nasuni Support.

Published at N/A

SOC2 Type 1 - Update

ComplianceCopy link

As update to Nasuni to achieving our SOC2Type1 certification. We have completed our readiness assessment and confirmed that we are in good shape to pass our audit in December with little challenge. Once we get the certification back from the auditors, Nasuni will post it on the portal and at the same time post an update on this portal. The plan for SOC2Type2 is to have that audit completed after the mandatory 90-day observation period has lapsed.

Published at N/A

Welcome to the Nasuni Information Security Trust Center

GeneralCopy link

As an organization that is security conscious and values security, we are excited to announce the official launch of the Nasuni Trust Center. By using this portal, you can request access to our compliance documents, review our standardized questionnaires such as the CAIQ and gain a general understanding of our security posture.

Over time, our team will be making changes to this portal as we implement new tools and processes in our environment. You can use the Subscribe button to receive email notifications for when our team has an important update, such as if we have an updated compliance report or if we have a status update regarding a major security vulnerability that has been recently discovered.

-The Nasuni Information Security Team

Published at N/A

If you think you may have discovered a vulnerability, please send us a note.

Report Issue