Quorum: SOC 2 Type 1

July 21st, 2022

Everyday at Quorum we see the impact of cyber security attacks and the scale at which a data breach can cripple an organisation.

Undertaking the SOC 2 Type 1 audit was an important process for us to demonstrate and prove that our systems and processes for are suitably designed and secured. We underwent the rigorous audit process to ensure our compliance to the strictest controls and policies when it comes to our management of customers’ sensitive environments and data. Not only did we receive the SOC 2 Type 1 audit certification, but the audit team also found zero exceptions during their investigations.

“Achieving SOC 2 compliance demonstrates our ongoing awareness and commitment to ensuring we are operating at the highest level of security practices.  Our team are continually handling sensitive data and connecting to numerous external systems, so it was imperative that our internal controls incorporated the upmost respect for our customers. Zero trust principles form a key part of this architecture” said Matt Brotherson, General Manager at Quorum.

To qualify for SOC 2 Type 1 Report, we engaged AssuranceLab to conduct the necessary audit. Specifically, the audit covered five key aspects of our business operations:

Security. Information and systems are protected against unauthorized access, unauthorized disclosure of information, and damage to systems that could compromise the availability, integrity, confidentiality, and privacy of information or systems and affect the entity’s ability to meet its objectives.

Availability. Information and systems are available for operation and use to meet the entity’s objectives.

Processing integrity. System processing is complete, valid, accurate, timely, and authorized to meet the entity’s objectives.

Confidentiality. Information designated as confidential is protected to meet the entity’s objectives.

Privacy. Personal information is collected, used, retained, disclosed, and disposed to meet the entity’s objectives.

A SOC 2 Type 1 audit offers proof that the suitability of the design of our data security systems and procedures align with these trust services criteria at a given point in time.

Mark McLean, Managing Director at Quorum emphasised the importance of this accreditation “As we partner with organisations to effectively apply, enhance and integrate new and emerging technologies within an evolving business, it is vital that we can demonstrate our own systems are secure. The SOC 2 Type 1 report is proof that Quorum’s practices can be trusted.”

The SOC 2 certification lets our partners and customers feel confident that we are committed to and making every investment to maintain the highest level of security and compliance. This validation of Quorum’s security controls is another reason companies can be confident in our capability and ability to securely support business-critical needs.