MarkLogic Receives SOC 2 Type II Certification for its Security Platform

MarkLogic Corporation, a data platform provider for simplifying data integration, announced that MarkLogic Data Hub Service has completed the Service Organization Controls 2 (SOC 2) Type II audit as certified by the American Institute of Certified Public Accountants (AICPA).

MarkLogic is already a secure modern database and the only one to carry a Common Criteria security certification.

Now, the MarkLogic Data Hub Service has achieved certification across all five SOC 2 Type II Principles — Security, Availability, Processing Integrity, Confidentiality, and Privacy — solidifying MarkLogic’s market leadership in enterprise-grade security for data-driven cloud services.

Organizations won’t move their mission critical workloads to the cloud without confidence in the security of the services they are adopting.

They need proof that the proper policies, procedures, and controls are in place to ensure that only the right data can be accessed by the right people in the right circumstances.

MarkLogic makes this possible with granular access controls, advanced encryption, separation of duties, and many other deep security capabilities. This latest certification further validates these strengths.

“MarkLogic Data Hub Service is a fully automated cloud service that is unrivaled in its ability to simply, securely, and quickly integrate data without the operational burden of an on-premises system,” said Joe Pasqua, EVP and head of products at MarkLogic. “But as breaches grow in size and severity, third-party validation, like the SOC 2 Certification, gives our customers the confidence they need to break data out of silos and turn it into a competitive advantage in the cloud.”

SOC 2 focuses on an organization’s internal controls related to compliance and operations. Unlike SOC 2 Type I, Type II evaluates the effectiveness of these controls over an extended period of time, not just a single snapshot.

The certification is built upon five trust principles:

  • Security: The system is protected against unauthorized access, physical and logical.
  • Availability: The system is available for operation and use as committed or agreed.
  • Processing integrity: System processing is complete, accurate, timely, and authorized.
  • Confidentiality: Information designated as confidential is protected as committed or agreed.
  • Privacy: Personal information is collected, used, retained, disclosed, and disposed of according to set guidelines.

Providing a safe and secure platform to manage enterprise data is paramount to MarkLogic’s enterprise vision of simplifying data integration as organizations move faster than ever to deploy and maintain new IT systems, particularly in the cloud.

For more information about this news, visit