We’ve been told that Pickaxe is GDPR compliant. This is great.
From a security standpoint, are we compliant with any other standards, frameworks, etc such as the:
-Cloud Security Alliance (CSA) - Security Trust Assurance and Risk (STAR)
-Service Organization Controls 2 (SOC2), Type II reports
-National Institute of Standards and Technology (NIST), specifically 800-53, 800-37, 800-88.
Potential clients are asking about security standards. So I’m curious about this. Are there any security certifications, testing results, etc that we can rely and communicate to potential clients.