• Home
  • Press Release
  • Keyfactor Completes SOC 2® Type II Audit for their Public Key Infrastructure Managed Service System
Press Release
Keyfactor Completes SOC 2® Type II Audit for their Public Key Infrastructure Managed Service System
Successful completion provides Keyfactor’s clients with the assurance that the controls and safeguards employed to protect and secure their data are in line industry standards and best practices

CLEVELAND, Ohio, December 13, 2019 – Keyfactor, Inc., a company committed to simplifying the proper application of digital security to protect its clients’ identities, data, and business processes, today announced that it has successfully completed a System and Organization Controls (SOC) 2® Type II Audit examination for their Public Key Infrastructure Managed Service System. Keyfactor, Inc. retained international business advisory firm Skoda Minotti for its SOC 2® audit work. Keyfactor, Inc. selected Skoda Minotti after an intensive search based on their reputation as a leading risk advisory and compliance firm.

Ben Osbrach, CISSP, CISA, QSA, CICP, CCSFP, partner-in-charge of Skoda Minotti’s risk advisory group says, “We were excited to continue our audit relationship with Keyfactor on the completion of their 2019 SOC 2 Type II. Andrew and his team strive for improvement in their controls year over year; taking their responsibility for maintaining a well-controlled and secured environment seriously.”

SOC 2® engagements are performed in accordance with the American Institute of Certified Public Accountants’ (AICPA) AT-C 205, Reporting on Controls at a Service Organization and based on the trust service principles outlined in the AICPA Guide, Reporting on Controls at a Service Organization Relevant to Security, Availability, Processing Integrity, Confidentiality, or Privacy. The SOC 2® Type II report is performed by an independent auditing firm and is intended to provide an understanding of the service organization’s suitability of the design and operating effectiveness of its internal controls. A service organization may select any or all of the trust service principles applicable to their business and Keyfactor chose to report on security. The successful completion of this voluntary engagement illustrates Keyfactor’s ongoing commitment to create and maintain a secure operating environment for their clients’ confidential data.

Skoda Minotti’s testing of Keyfactor’s controls included examination of their policies and procedures regarding network connectivity, firewall configurations, systems development life cycle, computer operations, logical access, data transmission, backup and disaster recovery, and other critical operational areas of their business. Upon completion of the audit, Keyfactor received a Service Auditor’s Report with an unqualified opinion demonstrating that their policies, procedures, and infrastructure meet or exceed the stringent SOC 2® criteria.

“The successful completion of our SOC 2® Type II examination audit provides Keyfactor’s clients with the assurance that the controls and safeguards we employ to protect and secure their data are in line industry standards and best practices,” said Andrew Prayner, Director of Information Security and Compliance.

Keyfactor has additionally produced a SOC 3® report, which is for public use, and provides assurance regarding the same trust service principles as the SOC 2® Type II. View Keyfactor’s SOC® 3 report & certificate.

About – Keyfactor, Inc.

Keyfactor is a C Corporation under United States federal income tax law, incorporated in the state of Delaware, with its principal place of business at 6050 Oak Tree Blvd., Suite 450, Independence, OH 44131. Keyfactor was originally Certified Security Solutions, Inc. which was founded in 2000. Certified Security Solutions, Inc. was rebranded as Keyfactor, effective November 1, 2018 with articles of incorporation amended February 1, 2019.

Keyfactor empowers enterprises of all sizes to escape the exposure epidemic – when breaches, outages and failed audits from digital certificates and keys impact brand loyalty and the bottom line. Powered by an award-winning PKI as-a-service platform for certificate lifecycle automation and IoT device security, IT and infosec teams can easily manage digital certificates and keys. And product teams can build IoT devices with crypto-agility and at massive scale. Exceptional products and a white-glove customer experience for its 500+ global customers have earned Keyfactor a 98.5% retention rate and a 99% support satisfaction rate. Learn more at www.keyfactor.com.

About – Skoda Minotti

Skoda Minotti is a Certified Public Accounting Firm based in Cleveland, OH offering a variety of tax, finance, and business advisory services in virtually every area of business. The Risk Advisory practice specializes in SOC Reporting, PCI DSS Compliance, HIPAA Compliance and HITRUST validation, FISMA, NIST, ISO 27001, Vulnerability and Penetration Testing, and other regulatory information security assessments. Staffs in Skoda Minotti’s Risk Advisory hold several industry certifications including Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Qualified Security Assessor (QSA), GIAC Penetration Tester (GPEN), and GIAC Web Application Penetration Tester (GWAPT). For more information about Skoda Minotti’s Risk Advisory Services, please visit skodaminotti.com/risk.

Keyfactor Media Contact
Sarah Hance
[email protected]
+1.216.785.2291

MRB Public Relations Media Contact
Angela Tuzzo
[email protected]
+1.732.758.1100