Infolock Managed Security Services Achieves SOC 2 Type 2 Compliance

April 14, 2025 — Arlington, Virginia — Infolock announced today that it has achieved SOC 2 Type 2 compliance in accordance with American Institute of Certified Public Accountants (AICPA) standards for SOC for Service Organizations, also known as SSAE 18. Infolock Managed Security Services achieved this accreditation with an unqualified opinion, validating its enterprise-level security program:

• Focused secure management of sensitive customer dataRigorous alignment with internationally accepted data security best practicesContinuous monitoring and proactive risk management to mitigate threats 
  
 

Infolock was audited by Cherry Bekaert, a leader in security and compliance attestation services. Cherry Bekaert affirmed that Infolock has established and is following strict information security policies and procedures encompassing the security, availability, and confidentiality of customer data that meet the strict SOC 2 standards. Cherry Bekaert is a registered public accounting firm in the US and Canada and provides risk management and assurance services which includes SOC 2, ISO, NIST, and CMMC accreditation.

“SOC 2 Type 2 accreditation is a key milestone for our managed data risk services practice. We couldn’t be more energized by this milestone,” said Leo Cortes, Chief Services Officer and Managing Partner at Infolock.“We focus on securing our customer’s most sensitive data assets, and in turn secure our own customer data with the highest levels of care and concern.”

Infolock provides managed data risk security services including ongoing incident response, executive reporting, and strategic program development for Data Security Posture Management (DSPM), Data Loss Prevention (DLP), data encryption, and data discovery / classification solutions. Infolock partners include Microsoft, Broadcom, Concentric AI, Spirion, BigID, Trace3, Guidepoint Security, Brite, and TD Synnex.

About Infolock

Founded in 2005, Infolock is the go-to managed data risk services firm for security-conscious organizations. Infolock expertly manages the complex data risks of its regulated clients, enabling organizations to achieve their strategic business objectives through programmatic governance, visibility, and protection initiatives.

Infolock developed DataRAMP™, the industry’s only purpose-built Data Risk Management Framework, enabling organizations to understand and manage data risks in the same manner as other organizational risks, including financial, competitive, and regulatory risk. Headquartered in Arlington, VA, Infolock serves customers worldwide in the financial services, healthcare, manufacturing, critical infrastructure, and public sectors.