Appian Achieves Several New Audit Reports Across Global Footprint
August 13, 2014
APPIAN RECEIVES SOC 2 TYPE 2, SOC 1 TYPE 2, AND ISAE 3402 AUDIT REPORTS TO BOLSTER EXISTING ACCREDITATIONS
RESTON, Va.—August 13, 2014—Appian, the market leader in modern business process management (BPM) and Case Management software, today announced that the Appian Cloud has received a Service Organization Controls (SOC) 2 Type 2 audit report. In addition, Appian has completed new audits for SOC 1 Type 2 and International Standard on Assurance Engagements (ISAE) 3402. These audits complement Appian Cloud’s existing security certifications and its control architecture has already helped clients meet both industry specific and geographic specific regulatory requirements, including PCI DSS, National Institute of Standards and Technology (NIST) 800-53 moderate controls, FDA 21 CFR Part 11, FISMA Moderate Authority to Operate (ATO), European Union Data Privacy and Australian Privacy Act.
Appian Cloud is recognized as the leading BPM Platform as a Service (PaaS) for the delivery of production applications. Appian Cloud has been given a “Strong Positive” rating (the highest rating in the report methodology) in the most recent Gartner, Inc. “MarketScope for Business Process Management Platform as a Service” report (Gartner, Inc. “MarketScope for Business Process Management Platform as a Service,” by M. Cantara, et al, November 15, 2013).
Hundreds of global organizations across financial services, insurance, pharmaceuticals, government, retail and other industries use Appian Cloud in full production to rapidly deliver transformational business applications. Appian’s Work Platform combination of enterprise data navigation, process management, native mobility and social collaboration accelerates smarter business decisions and actions, improves operational efficiency and optimizes the customer experience. Unlike typical PaaS/SaaS providers, Appian customer deployments are fully portable between Appian Cloud and on-premise Appian environments, reducing the perceived risk of cloud computing even further. Appian Cloud also delivers a 99.95 percent SLA.
Appian Cloud’s updated SOC 2 Type 2 audit was prepared taking into consideration the attestation standards established by the American Institute of Certified Public Accountants (the “AICPA”). The SOC 2 report provides a detailed review, by an independent audit firm, of Appian Cloud’s security, availability, and confidentiality controls. SOC 2 reports focus on controls at a service organization relevant to the following principles:
- Security: The system is protected against unauthorized access (both physical and logical)
- Availability: The system is available for operation and use as committed or agreed
- Processing Integrity: System processing is complete, accurate, timely, and authorized
- Confidentiality: Information designated as confidential is protected as committed or agreed
- Privacy: Personal information is collected, used, retained, disclosed, and destroyed in conformity with the commitments in the entity’s privacy notice and with criteria set forth in generally accepted privacy principles issued by the AICPA and CICA
Appian’s new ISAE 3402 audit report is similar to Appian’s SOC 1 Type 2 audit, but utilizes an international standard. ISAE 3402 was developed to provide an international assurance standard for allowing public accountants to issue a report for use by user organizations and their auditors (user auditors) on the controls at a service organization that are likely to impact or be a part of the user organization’s system of internal control over financial reporting.
“Appian Cloud provides enterprise-grade security and compliance that meets the demanding requirements of a broad range of regulated and unregulated industries,” said Myles Weber, Vice President of Cloud and Community Services at Appian. “Our latest audits give assurance to our customers that they can safely and rapidly drive business innovation with our platform.”
Appian provides all the necessary components to rapidly deploy new process-based applications in the cloud via Platform as a Service. Users can easily design, execute, manage, and optimize key business applications through a simple web browser. Appian Cloud features attributes such as instant project start, state-of-the-art enabling technologies, continuous innovation, native mobile apps, personalized branding, simplified operations, support for corporate system integrations and localized hosting (USA, EU, APAC, South America).
Appian provides a software development platform that combines intelligent automation and enterprise low-code development to rapidly deliver powerful business applications. Many of the world’s largest organizations use Appian applications to improve customer experience, achieve operational excellence, and simplify global risk and compliance.