Veza Achieves ISO 27001 Certification in Ongoing Commitment to Identity Security and Customer Trust

June 1, 2023 – PALO ALTO, CA – Veza, the identity security company, announced today that it has received its ISO/IEC 27001 certification, the international standard for information security. ISO 27001 is the most common global standard that requires information security management systems (ISMS) to meet defined requirements.

As cyber threats continue to emerge daily, ISO 27001 helps organizations prevent these incidents from occurring within their own company and put rigorous processes in place to manage risk effectively. Organizations in finance, banking, healthcare, telecom, and information technology are especially vulnerable due to the large volumes of sensitive data they store, process, and manage on a regular basis. As a result, companies across industries often require the vendors they work with to be ISO 27001-certified.

“As the identity security company, we prioritize cyber preparedness. Many of the world’s most security-conscious firms rely on Veza to secure identity access to systems,” said Tarun Thakur, CEO and co-founder of Veza. “The ISO 27001 certification underscores our commitment to risk management, cyber resilience, and operational excellence. It’s an achievement that gives our customers even more confidence that Veza can secure access to their most sensitive data across SaaS apps, data lakes, unstructured files, cloud services, and custom applications.”

Through a defined set of best practices and principles, ISO 27001 provides organizations with guidance on establishing, implementing and maintaining an effective information security management system. To achieve the certification, organizations must prove that their information security management system meets the requirements to demonstrate their ability to manage data owned or handled by their organization safely and securely.

The latest ISO Survey reported that approximately 59,000 valid ISO 27001 certifications have been issued, which is less than .01% of all businesses globally. Veza worked with an independent third-party auditor, Schellman, to conduct the assessment and successfully achieved all requirements to receive the certification.

Veza’s ISO 27001 certification can be verified at:

To learn more about Veza’s Security Values, please visit:

About Veza

Veza is the identity security company. Identity and security professionals use Veza to secure identity access for the modern data and SaaS landscape. By automating the work of finding and fixing excessive permissions on a continuous basis, Veza helps organizations achieve Least Privilege. Veza’s unique approach ingests permissions metadata from any SaaS app or data system, organizes it as an authorization graph, and makes it searchable in real-time. Global enterprises like Blackstone, Wynn Resorts, and Expedia trust Veza to visualize and monitor who has access to what, to remediate privileged violations, and to automate access reviews. Founded in 2020, Veza is headquartered in Los Gatos, California, and is funded by Accel, Bain Capital, Ballistic Ventures, GV, Norwest Venture Partners, and True Ventures. Visit us at and follow us on LinkedIn, Twitter, and YouTube.

Media Contact

Gillian Roberts