Trellix Logo
Why Trellix?
Platform
Services
Partners
Resources
About
Get Started
Breached?
Support
Contact Us
Main menu
WHY TRELLIX?
Why Trellix? Trellix vs. the Competition The Trellix Platform Advantage Certifications and Compliance
THREAT INTELLIGENCE
Advanced Research Center Trellix Insights Threat Reports Latest Research Blogs
Main menu
PLATFORM CAPABILITIES
About Our Platform Trellix Wise
PRODUCT CATEGORIES
Endpoint Security Data Security Network Detection and Response Threat Intelligence Email Security Security Operations View All Products
SOLUTIONS
Operational Technology Ransomware Detection and Response AI and Security Operations Government
Main menu
PROFESSIONAL SERVICES
Trellix Thrive Managed Detection and Response Solution Services Trellix Guardians
EDUCATION AND TRAINING
Education Services Training Courses
Main menu
OUR NETWORK
Partners Overview Security Innovation Alliance OEM & Embedded Alliances Partner Delivered Services
PARTNER PORTAL
Trellix Partner Portal Login Become a Partner
PARTNER LOCATOR
Search for a Trellix Partner
STRATEGIC PARTNERS
Amazon Web Services (AWS) Google Cloud Telefónica Tech
Main menu
RESOURCE CENTER
Resource Library Customer Stories The Mind of the CISO Security Awareness Topics
LEARN
Webinars Weekly Tech Talk Series Product Tours
LOGIN
Trellix Login Trellix Hive Developer Portal Marketplace
Main menu
COMPANY
About Us Leadership Industry Recognition Customer Stories Careers
MEDIA
Press Releases Latest News Blogs View Newsroom
CONNECT
Events Contact Us

Certifications and Compliance

We focus on security, compliance, and privacy to be your most trusted cybersecurity company
Questions? Contact Us US Export Compliance

Trellix certifications and compliance

DORA

DORA

The Digital Operational Resilience Act (DORA) is an EU regulation designed to increase cybersecurity and resilience across financial institutions and third-party service providers in the EU.

Get the Solution Brief Watch the On-Demand Webinar

FedRAMP

FedRAMP

Federal Risk and Authorization Management Program (FedRAMP) is a Federal Government-wide program that provides a standardized approach to the security assessment, authorization, and monitoring of cloud products and services.

Trellix FedRAMP Compliance

IL5

IL5

Impact Level 5 (IL5) is a certification by the U.S. Department of Defense (DoD) that authorizes a cloud service provider to store and process some of their most sensitive data. Trellix EDR has been granted DoD IL5 certification.

Read the Press Release

ISO 27001

ISO 27001

One of the highest internationally recognized standards for information security, ISO 27001 specifies requirements covering an information security management system (ISMS). Trellix was certified ISO 27001 compliant in 2022.

LAST ISSUE: December 17, 2024

ISO 27017

ISO 27017

ISO 27017 covers the information security aspects of cloud computing, recommending cloud-specific information security controls that supplement ISO 27002 and ISO 27001. Trellix was certified ISO 27017 compliant in 2022.

LAST ISSUE: December 17, 2024

ISO 27018

ISO 27018

ISO 27018 is the international standard for protecting personal information in cloud storage. The term for the personal data it covers is Personally Identifiable Information (PII). Trellix was certified ISO 27018 compliant in 2022.

LAST ISSUE: December 17, 2024

ISO 27701

ISO 27701

ISO 27701 specifies requirements for a Privacy Information Management System (PIMS) with guidance for managing and protecting personally identifiable information (PII). Trellix was certified ISO 27701 compliant in 2022.

LAST ISSUE: December 17, 2024

NCA Cybersecurity Controls of Saudi Arabia

NCA Cybersecurity Controls of Saudi Arabia

The National Cybersecurity Authority (NCA) in Saudi Arabia plays a pivotal role in safeguarding the Kingdom’s critical infrastructure, businesses, and citizens from the growing threat of cyberattacks.

Get the Solution Brief (English) Get the Solution Brief (Arabic) Watch the On-Demand Webinar

NIS 2 Compliance

NIS 2

The EU Network and Information Security Directive 2 (NIS 2) is designed to increase cybersecurity and resilience across the EU. Organizations must implement a wide range of risk management approaches and policies.

Trellix NIS 2 Compliance

SOC 2 - Service Organization and Controls

SOC 2

Service Organization Control Type 2 (SOC 2) is a cybersecurity framework developed by the American Institute of Certified Public Accountants (AICPA) that evaluates an organization's ability to securely manage customer data.

Trellix SOC 2 Compliance

TISAX

TISAX

Trusted Information Security Assessment Exchange (TISAX) is a European automotive industry-standard ISA catalog based on key aspects of information security such as data protection and connection to third parties.

Learn More

For additional Trellix compliance documentation, please visit the Trellix Trust Center.