Okta Hits Major Security, Availability, Innovation and Scalability Milestones, Completes Rigorous SOC 2 Audit

San Francisco, CA, April 25, 2011 — Today, Okta, the leading on-demand identity and access management service, announced the completion of a stringent SOC 2 audit and the achievement of an impressive list of scalability, availability and innovation achievements. In addition, Okta released detailed information about its secure, zero-downtime architecture that has enabled these achievements and empowered enterprise IT organizations to address the identity management challenges of their hybrid IT environments.

Completion of Rigorous SOC 2 Audit

To deliver a highly-available, secure service that meets the needs of the most demanding enterprise customers, SaaS vendors must practice and prove that they adhere to the most strenuous industry guidelines. SOC 2 (replacing SAS 70) is the officially recognized auditing standard for service organizations to demonstrate they have adequate controls and processes in place — with a SOC 2 audit highlighting that an independent accounting and auditing firm has reviewed and examined an organization's control objectives and activities, and tested these controls to ensure that they are operating effectively.

Service organizations are free to implement controls for any one of the five trust principles associated with SOC 2, and Okta chose to implement controls and undergo auditing against those controls for its identity management service for all five principles. These include security, availability, processing integrity, confidentiality, as well as privacy — arguably as arduous a task as all fou