SGNL Completes SOC 2 Audit

SGNL was audited in accordance with SOC 2 and has been given a clean attestation report that can now be shared upon request.

Conrad Smith, CISO, SGNL
December 1, 2023
Follow us on

At SGNL we’re building new technology that empowers organizations to employ continuous access management with fine-grained access policies evaluated at run time, while also contributing to and authoring new open source identity standards for IAM.

As a security services and products provider, our core mission is to make our customers more secure. That’s why I’m proud to announce the completion of our SOC 2 Type 1 audit and report.

As a CISO I know that a SOC 2 report does not, on its own, make a company more secure. What it does do though is document and demonstrate our unwavering commitment to security. What better than to pay someone to come in to ask a few hundred probing questions and then write a report we can share with you?

It’s also important to point out that a SOC 2 audit is just one small tangible piece of our focus on trust and security. Since its founding, SGNL has kept security at the core of everything we do, both for ourselves and our customers. Indeed one of SGNL’s first early steps was recognising the importance of having a CISO, i.e. me. It also means making meaningful investments in security from the very beginning, both in our product and across every part of our organization.

For example:

  • Automation of leading practices throughout the Secure SDLC, from Static to Dynamic analysis and in between
  • Strong IAM security practices including automated secrets protections and mandatory use of hardware authentication devices
  • Third-party security assessments
  • Isolation of our production environments and allowing only limited access through an approved secure method

If you’d like to learn more about how we approach security at SGNL, reach out to us at

Best practices and the latest security trends delivered to your inbox