Axis Communications said the SOC 2 Type 2 audit evaluated controls operating in live, production cloud environments over an extended period.
Axis Communications has achieved SOC 2 Type 2 attestation, validating the long-term effectiveness of its cloud security and operational controls.
The independent audit covers Axis Cloud Connect, the company’s open cloud platform, as well as several cloud-enabled solutions built on the platform, including AXIS Device Manager Edge, AXIS Device Manager Extend and AXIS Body Worn Live. According to the company, the assessment confirms that Axis’ controls operate consistently and reliably across real-world production environments.
The third-party evaluation assessed Axis’ alignment with the Trust Services Criteria established by the American Institute of Certified Public Accountants, including security, availability and confidentiality. Axis said the assessment addresses growing customer and industry demand for continuous and proven cybersecurity performance as physical security systems become increasingly cloud-dependent.
Wayne Dorris, program manager, cybersecurity at Axis Communications, said SOC 2 Type 2 provides independent verification that the company’s controls perform consistently over time in live environments, helping integrators and enterprise customers manage risk, meet compliance requirements and deploy Axis solutions at scale.
The SOC 2 Type 2 attestation builds on Axis’ SOC 2 Type 1 achievement in August 2024. While the Type 1 review validated the design and implementation of controls at a point in time, the Type 2 assessment evaluated how those controls performed over an extended period.
Niklas Holmqvist, R&D director, enterprise and partner solutions at Axis Communications, said the attestation validates the controls and processes in place to safeguard customer data and supports the company’s focus on scalable and reliable cloud-based solutions built around cybersecurity best practices.
SOC 2 Type 2 is widely recognized as a standard for cloud service providers and provides independent verification that Axis Cloud Connect meets requirements for data protection and operational integrity. While physical security is a key use case, the attestation also applies to enterprise customers across sectors such as retail, healthcare, manufacturing and transportation.
Rather than validating a single product, the audit confirms that security and operational controls are applied consistently across Axis’ cloud platform and across use cases including device management and live body-worn video.
Axis said the assessment complements its broader cybersecurity program, which includes built-in security features across cloud-enabled edge devices. The company also said achieving SOC 2 Type 2 demonstrates its commitment to the CISA Security by Design Pledge, with cybersecurity principles applied consistently across products and solutions.
According to the company, the combined SOC 2 Type 1 and Type 2 results provide a comprehensive view of Axis’ cybersecurity posture and reflect its long-term focus on trust, transparency and cloud security.