Certifications, Regulations, and Standards

Our dedicated Information Security and Privacy teams are responsible for maintaining Skyhigh Security's compliance to a variety of laws, standards, and frameworks, including:

DoD Impact Level (IL2, IL4, and IL5)

Cloud computing security requirements for the US Department of Defense for Impact Level 2, Impact Level 4, and Impact Level 5

DoD Impact Level (IL2)

FedRAMP

U.S. government program providing a standard approach to security, authorization and monitoring

FedRAMP

GDPR

European Union General Data Protection Regulation (GDPR)

GDPR

SOC 2

Developed by the American Institute of CPAs (AICPA), SOC 2 defines criteria for managing customer data based on five "trust service principles"-security, availability, processing integrity, confidentiality and privacy

SOC 2

CSA Security Trust Assurance and Risk (STAR)

The Cloud Security Alliance Security Trust Assurance and Risk (STAR) Program encompasses key principles of transparency, rigorous auditing, and harmonization of standards

CSA Security Trust Assurance and Risk (STAR)

ISO/IEC 27001

ISO/IEC 27001 provides the best-known standard for information security management systems (ISMS) and their requirements.

ISO/IEC 27001

Information Security Registered Assessors Program (IRAP)

IRAP is an Australian Signals Directorate (ASD) to ensure entities can access high-quality security assessment services.

Information Security Registered Assessors Program (IRAP)

Disclaimer: Not all certificates are applicable to all Skyhigh Security products.
Contact Skyhigh Security for more details.