Skip to main content

Kaspersky successfully passes independent SOC 2 audit

Kaspersky has finalized the audit against the SOC 2 reporting framework by an independent third-party auditor.

As a result, Kaspersky has achieved the SOC 2 Type 2 report in accordance with the SSAE 18 standard (Security criteria) issued by an independent third-party auditor. The scope of the assessment includes internal controls over regular automatic updates of antivirus databases created and distributed by Kaspersky for its products operating on Windows and Unix Servers.

The audit gauges that the development and release of Kaspersky’s antivirus bases are protected from unauthorized changes by security controls.


The Service Organization Controls (SOC) Reporting Framework, a globally recognized report for cybersecurity risk management controls, was developed by the American Institute of Certified Public Accountants (AICPA). It has been created to inform customers that controls over the Service are designed and implemented effectively. As a responsible and transparent company committed to the highest security principles, Kaspersky has chosen this standard as appropriate.

Request Kaspersky SOC 2 Type 2 Report

Kaspersky offers its SOC 2 Type 2 report to its clients in order to demonstrate how the development and release of Kaspersky’s antivirus databases operates, and is protected from unauthorized changes.

To validate your request, please enter your company e-mail address and your Kaspersky Account Manager’s e-mail address on this registration form.