uses cookies to make interactions with the Company’s Websites easy and meaningful. When you visit one of the Company’s Websites,’s servers send a cookie to your computer. Standing alone, cookies do not personally identify you; they merely recognize your Web browser. Unless you choose to identify yourself to, either by responding to a promotional offer, opening an account, or filling out a Web form (such as a “Contact Us” or a “Free Trial” Web form), you remain anonymous to the Company. Please go to our privacy statement for details.


NopSec Retains Soc 2 Type II Status for Second Straight Year


NopSec is proud to announce it has successfully completed the System and Organization Controls (SOC) 2 Type II examination in recognition of its commitment to information security. Developed by the American Institute of CPAs (AICPA), SOC 2 (System and Organization Controls) defines criteria for managing customer data based on five “trust service principles” — security, availability, processing integrity, confidentiality, and privacy.

A SOC 2 examination provides organizations with a report on an organization’s internal controls and how it protects customer data and sensitive information. It is the standard for data security among digital companies in the U.S.

An independent auditor, Insight Assurance, conducted the detailed examination. Through this process, NopSec demonstrated its adherence to data security, availability and confidentiality standards developed by the American Institute of Certified Public Accountants (AICPA).

With its SOC 2 recognition, NopSec not only protects the safety of its customers’ data today but demonstrates that it has set the right standards in place for the future.

To earn SOC 2 certification, NopSec completed the following over a 12 month period:

  • Assessment of the design and operating effectiveness of NopSec’s controls
  • Thorough examination of security of vendors and third parties
  • Defined policies to ensure continued protection for customers and employees

NopSec is excited to be taking this important step to continue its data protection practices.

About NopSec

NopSec Unified VRM enables Vulnerability Management teams to identify the vulnerabilities that matter most in their environment and expedite the remediation process. Our platform’s multi-dimensional machine learning algorithm cuts down the data noise and highlights the critical vulnerabilities across your full stack that are most likely to be weaponized against you based on your unique environment.

Schedule a demo today to see how NopSec helps you maximize the impact of your security team.

Schedule a Product Demo Today!

See how NopSec's security insights and cyber threat exposure management platform can organize your security chaos.