Click here to close now.

SYS-CON MEDIA Authors: Andreas Grabner, Liz McMillan, Dana Gardner, Elizabeth White, Cloud Best Practices Network

News Feed Item

Appian Achieves Several New Audit Reports Across Global Footprint

Appian Receives SOC 2 Type 2, SOC 1 Type 2, and ISAE 3402 Audit Reports to Bolster Existing Accreditations

RESTON, VA -- (Marketwired) -- 08/13/14 -- Appian, the market leader in modern business process management (BPM) and Case Management software, today announced that the Appian Cloud has received a Service Organization Controls (SOC) 2 Type 2 audit report. In addition, Appian has completed new audits for SOC 1 Type 2 and International Standard on Assurance Engagements (ISAE) 3402. These audits compliment Appian Cloud's existing security certifications and its control architecture has already helped clients meet both industry specific and geographic specific regulatory requirements, including PCI DSS, National Institute of Standards and Technology (NIST) 800-53 moderate controls, FDA 21 CFR Part 11, FISMA Moderate Authority to Operate (ATO), European Union Data Privacy and Australian Privacy Act.

Appian Cloud is recognized as the leading BPM Platform as a Service (PaaS) for the delivery of production applications. Appian Cloud has been given a "Strong Positive" rating (the highest rating in the report methodology) in the most recent Gartner, Inc. "MarketScope for Business Process Management Platform as a Service" report (Gartner, Inc. "MarketScope for Business Process Management Platform as a Service," by M. Cantara, et al, November 15, 2013).

Hundreds of global organizations across financial services, insurance, pharmaceuticals, government, retail and other industries use Appian Cloud in full production to rapidly deliver transformational business applications. Appian's Work Platform combination of enterprise data navigation, process management, native mobility and social collaboration accelerates smarter business decisions and actions, improves operational efficiency and optimizes the customer experience. Unlike typical PaaS/SaaS providers, Appian customer deployments are fully portable between Appian Cloud and on-premise Appian environments, reducing the perceived risk of cloud computing even further. Appian Cloud also delivers a 99.95 percent SLA.

Appian Cloud's updated SOC 2 Type 2 audit was prepared taking into consideration the attestation standards established by the American Institute of Certified Public Accountants (the "AICPA"). The SOC 2 report provides a detailed review, by an independent audit firm, of Appian Cloud's security, availability, and confidentiality controls. SOC 2 reports focus on controls at a service organization relevant to the following principles:

  • Security: The system is protected against unauthorized access (both physical and logical)
  • Availability: The system is available for operation and use as committed or agreed
  • Processing Integrity: System processing is complete, accurate, timely, and authorized
  • Confidentiality: Information designated as confidential is protected as committed or agreed
  • Privacy: Personal information is collected, used, retained, disclosed, and destroyed in conformity with the commitments in the entity's privacy notice and with criteria set forth in generally accepted privacy principles issued by the AICPA and CICA

Appian's new ISAE 3402 audit report is similar to Appian's SOC 1 Type 2 audit, but utilizes an international standard. ISAE 3402 was developed to provide an international assurance standard for allowing public accountants to issue a report for use by user organizations and their auditors (user auditors) on the controls at a service organization that are likely to impact or be a part of the user organization's system of internal control over financial reporting.

"Appian Cloud provides enterprise-grade security and compliance that meets the demanding requirements of a broad range of regulated and unregulated industries," said Myles Weber, Vice President of Cloud and Community Services at Appian. "Our latest audits give assurance to our customers that they can safely and rapidly drive business innovation with our platform."

Appian provides all the necessary components to rapidly deploy new process-based applications in the cloud via Platform as a Service. Users can easily design, execute, manage, and optimize key business applications through a simple web browser. Appian Cloud features attributes such as instant project start, state-of-the-art enabling technologies, continuous innovation, native mobile apps, personalized branding, simplified operations, support for corporate system integrations and localized hosting (USA, EU, APAC, South America).

About Appian
As the market leader in modern BPM software, Appian delivers a Work Platform that unites users with all their data, processes, and collaborations -- in one environment, on any mobile device, through a simple social interface. Appian's Business Process Management (BPM) Suite seamlessly integrates work automation with native mobile and social capabilities. Appian is available on-premise and in the cloud, with complete portability. More than 3.5 million users, from Fortune 100 companies to the mid-market and small businesses worldwide, trust Appian to power their critical business processes. For more information, visit www.appian.com.

For Information Contact:
Mike Ingrisano
Media Relations Manager
+1 703.434.3356
Email Contact

More Stories By Marketwired .

Copyright © 2009 Marketwired. All rights reserved. All the news releases provided by Marketwired are copyrighted. Any forms of copying other than an individual user's personal reference without express written permission is prohibited. Further distribution of these materials is strictly forbidden, including but not limited to, posting, emailing, faxing, archiving in a public database, redistributing via a computer network or in a printed form.

Latest Stories
Software is eating the world. Companies that were not previously in the technology space now find themselves competing with Google and Amazon on speed of innovation. As the innovation cycle accelerates, companies must embrace rapid and constant change to both applications and their infrastructure, and find a way to deliver speed and agility of development without sacrificing reliability or efficiency of operations. In her Day 2 Keynote DevOps Summit, Victoria Livschitz, CEO of Qubell, discussed...
Security can create serious friction for DevOps processes. We've come up with an approach to alleviate the friction and provide security value to DevOps teams. In her session at DevOps Summit, Shannon Lietz, Senior Manager of DevSecOps at Intuit, will discuss how DevSecOps got started and how it has evolved. Shannon Lietz has over two decades of experience pursuing next generation security solutions. She is currently the DevSecOps Leader for Intuit where she is responsible for setting and driv...
The explosion of connected devices / sensors is creating an ever-expanding set of new and valuable data. In parallel the emerging capability of Big Data technologies to store, access, analyze, and react to this data is producing changes in business models under the umbrella of the Internet of Things (IoT). In particular within the Insurance industry, IoT appears positioned to enable deep changes by altering relationships between insurers, distributors, and the insured. In his session at @Things...
NaviSite, Inc., a Time Warner Cable company, has opened a new enterprise-class data center located in Santa Clara, California. The new data center will enable NaviSite to meet growing demands for its enterprise-class Cloud and Managed Services from existing and new customers. This facility, which is owned by data center solution provider Digital Realty, will join NaviSite’s fabric of nine existing data centers across the U.S. and U.K., all of which are designed to provide a resilient, secure, hi...
SYS-CON Events announced today that Open Data Centers (ODC), a carrier-neutral colocation provider, will exhibit at SYS-CON's 16th International Cloud Expo®, which will take place June 9-11, 2015, at the Javits Center in New York City, NY. Open Data Centers is a carrier-neutral data center operator in New Jersey and New York City offering alternative connectivity options for carriers, service providers and enterprise customers.
When it comes to the Internet of Things, hooking up will get you only so far. If you want customers to commit, you need to go beyond simply connecting products. You need to use the devices themselves to transform how you engage with every customer and how you manage the entire product lifecycle. In his session at @ThingsExpo, Sean Lorenz, Technical Product Manager for Xively at LogMeIn, will show how “product relationship management” can help you leverage your connected devices and the data th...
Thanks to Docker, it becomes very easy to leverage containers to build, ship, and run any Linux application on any kind of infrastructure. Docker is particularly helpful for microservice architectures because their successful implementation relies on a fast, efficient deployment mechanism – which is precisely one of the features of Docker. Microservice architectures are therefore becoming more popular, and are increasingly seen as an interesting option even for smaller projects, instead of bein...
SYS-CON Events announced today that CodeFutures, a leading supplier of database performance tools, has been named a “Sponsor” of SYS-CON's 16th International Cloud Expo®, which will take place on June 9–11, 2015, at the Javits Center in New York, NY. CodeFutures is an independent software vendor focused on providing tools that deliver database performance tools that increase productivity during database development and increase database performance and scalability during production.
The IoT market is projected to be $1.9 trillion tidal wave that’s bigger than the combined market for smartphones, tablets and PCs. While IoT is widely discussed, what not being talked about are the monetization opportunities that are created from ubiquitous connectivity and the ensuing avalanche of data. While we cannot foresee every service that the IoT will enable, we should future-proof operations by preparing to monetize them with extremely agile systems.
There’s Big Data, then there’s really Big Data from the Internet of Things. IoT is evolving to include many data possibilities like new types of event, log and network data. The volumes are enormous, generating tens of billions of logs per day, which raise data challenges. Early IoT deployments are relying heavily on both the cloud and managed service providers to navigate these challenges. Learn about IoT, Big Data and deployments processing massive data volumes from wearables, utilities and ot...
Even as cloud and managed services grow increasingly central to business strategy and performance, challenges remain. The biggest sticking point for companies seeking to capitalize on the cloud is data security. Keeping data safe is an issue in any computing environment, and it has been a focus since the earliest days of the cloud revolution. Understandably so: a lot can go wrong when you allow valuable information to live outside the firewall. Recent revelations about government snooping, along...
In his session at DevOps Summit, Tapabrata Pal, Director of Enterprise Architecture at Capital One, will tell a story about how Capital One has embraced Agile and DevOps Security practices across the Enterprise – driven by Enterprise Architecture; bringing in Development, Operations and Information Security organizations together. Capital Ones DevOpsSec practice is based upon three "pillars" – Shift-Left, Automate Everything, Dashboard Everything. Within about three years, from 100% waterfall, C...
The explosion of connected devices / sensors is creating an ever-expanding set of new and valuable data. In parallel the emerging capability of Big Data technologies to store, access, analyze, and react to this data is producing changes in business models under the umbrella of the Internet of Things (IoT). In particular within the Insurance industry, IoT appears positioned to enable deep changes by altering relationships between insurers, distributors, and the insured. In his session at @Things...
There has been a lot of discussion recently in the DevOps space over whether there is a unique form of DevOps for large enterprises or is it just vendors looking to sell services and tools. In his session at DevOps Summit, Chris Riley, a technologist, discussed whether Enterprise DevOps is a unique species or not. What makes DevOps adoption in the enterprise unique or what doesn’t? Unique or not, what does this mean for adopting DevOps in enterprise size organizations? He also explored differe...
“In the past year we've seen a lot of stabilization of WebRTC. You can now use it in production with a far greater degree of certainty. A lot of the real developments in the past year have been in things like the data channel, which will enable a whole new type of application," explained Peter Dunkley, Technical Director at Acision, in this SYS-CON.tv interview at @ThingsExpo, held Nov 4–6, 2014, at the Santa Clara Convention Center in Santa Clara, CA.