Trust Center

Start your security review
View & download sensitive information
Search items
ControlK

Welcome to the Druva Information Security Portal. Here you will find details on our Information Security Program that you may need to evaluate and keep informed about Druva Information Security.

The Druva information security program is led by Yogesh Badwe, CSO. The team is responsible for the following areas:

  • Governance, Risk & Compliance
    • Attestations, Certifications & Authorizations (SOC-2, HIPAA, FedRAMP, ISO-27001)
  • Security Operations & Cloud Security
    • Incident Response, Vulnerability Management, Penetration Testing, SIEM
  • Application Security
    • Security Reviews within CI/CD Pipeline, Threat Modeling, SAST, DAST
  • Security.Assurance
    • Third Party Risk Management

The Druva security program has been formalized and staffed continuously for more than the past 5 years. Druva has held continuously SOC-2 attestation and FedRAMP authorization for more than 4 years running.

NASA - National Aeronautics and Space Administration-company-logoNASA - National Aeronautics and Space Administration
Marriott International-company-logoMarriott International
Amgen-company-logoAmgen
Chipotle Mexican Grill-company-logoChipotle Mexican Grill
SoFi-company-logoSoFi
Coldwell Banker company iconColdwell Banker
Hitachi America-company-logoHitachi America
Brown-Forman-company-logoBrown-Forman
The Clorox Company-company-logoThe Clorox Company
Shearman & Sterling-company-logoShearman & Sterling
Leica Microsystems-company-logoLeica Microsystems

Documents

HIPAA Report

If you think you may have discovered a vulnerability, please send us a note.

Powered bySafeBase Logo