Axis Communications announced that the company has achieved the System and Organisation Controls (SOC 2®) Type 1 attestation for its cloud-based solutions, Axis Cloud Connect and AXIS Device Manager Extend.
The audit, conducted by an independent third-party auditor, confirms that Axis has implemented robust cloud security controls and practices that meet the stringent criteria set forth by the American Institute of Certified Public Accountants (AICPA), which include data security, availability, confidentiality, processing integrity and privacy.
Type 2 attestation
Axis continues to monitor the routine of those controls over time, to complete a Type 2 attestation
Axis will continue to monitor the performance of those controls over time, with the goal of completing a Type 2 attestation within the next six months.
“SOC 2 is a voluntary yet important compliance which validates our work and lets our partners and customers know how serious we are about cloud security,” said Patrik Pettersson, Axis Communications’ senior manager of future business and strategic initiatives.
Cloud-based solutions
Pettersson added: “The attestation specifically evaluates the design of security controls, ensuring that our cloud-based solutions and services—such as Axis Cloud Connect—are held to the highest standards."
"A strong SOC 2 report demonstrates our commitment to cybersecurity, giving our customers and partners the peace of mind that their data is protected using internationally recognised data management and cybersecurity best practices.”
AXIS Device Manager Extend software
Axis Cloud Connect is an open cloud-based platform designed to provide secure, scalable and security
Axis Cloud Connect is an open cloud-based platform designed to provide more secure, scalable and flexible security solutions. Introduced in April 2024, this platform works together with Axis devices to enable a range of managed services, from Axis and its partners, that support system and device management, facilitate video and data delivery and meet high demands for cybersecurity.
Designed to be channel-friendly, Axis Cloud Connect—and Axis offerings built on the platform—not only deliver solutions and services for system integrators and their customers, but it also enables Axis partners to develop their own cloud-based solutions. It’s with the same focus on cybersecurity, flexibility and scalability, that Axis sought and attained SOC 2 Type 1 attestation for AXIS Device Manager Extend software: a unified interface for proactively managing devices and sites from anywhere.
Video analytics management
AXIS Device Manager Extend, which is built on Axis Cloud Connect, delivers instant insights to effectively manage assets and keep track of devices across their lifecycle via real-time product information, device configuration, software and firmware updates, and video analytics management.
Both AXIS Device Manager Extend and Axis Cloud Connect have met stringent Type 1 requirements, attesting to proper security control design and point-in-time functionality. Over the next six months Axis expects to achieve Type 2 compliance for Axis Cloud Connect and AXIS Device Manager Extend—confirming their effective performance over an extended duration.
Hybrid-cloud environments
SOC 2 is the most widely recognised cloud security framework in the U.S
With a growing number of businesses embracing cloud computing and hybrid-cloud environments, it is important for vendors to demonstrate that cloud security is a priority. Since SOC 2 is the most widely recognised cloud security framework in the U.S., it allows organisations to quickly and easily gauge the security capabilities of potential partners or vendors.
Axis’ strong SOC 2 Type 1 attestation, and current Type 2 audit, underscore the company’s commitment to keeping customer devices and data protected, no matter where they live.
NIST FIPS 140-3 certification
“Axis Cloud Connect and AXIS Device Manager Extend were developed with robust security measures in place, so we were already well-positioned to meet most SOC 2 criteria,” said Wayne Dorris, CISSP, program manager, cybersecurity at Axis Communications.
"At Axis, we consider certifications, industry standards, and of course regulatory compliance measures, as essential baselines from which to build upon. We aim for the highest degree of security because there’s a lot at stake, and trust is essential to success. From AICPA SOC 2 attestation to our recent NIST FIPS 140-3 certification, we’re pleased to continue to provide our customers with market-pioneering solutions that not only prioritise innovation and performance, but cybersecurity as well.”