Cyrus achieves SOC 2 Type I compliance

Connor Turland·January 09, 2026·

Security isn't just a feature at Cyrus - it's foundational to how we build and operate. Today, we're proud to announce that Cyrus has achieved SOC 2 Type I compliance, verified by an independent third-party audit.

What is SOC 2?

SOC 2 (System and Organization Controls 2) is a widely recognized auditing standard developed by the American Institute of Certified Public Accountants (AICPA). It evaluates how a company manages data based on five trust service criteria: security, availability, processing integrity, confidentiality, and privacy.

A Type I audit examines whether our security controls are designed appropriately at a specific point in time. It's a rigorous assessment of our infrastructure, policies, and procedures - validating that we've built security into the foundation of Cyrus.

What this means for our users

This attestation provides independent verification that Cyrus maintains enterprise-level security standards. For teams using Cyrus to automate development workflows, this means:

Your code stays yours: Our architecture ensures your code never leaves your environment
Verified security controls: An independent auditor has validated our security design
Enterprise-ready: SOC 2 compliance is often required for enterprise software procurement

Our commitment to security

At Cyrus, security has been part of our engineering culture from day one. This isn't a checkbox exercise - it's how we design our software, our internal systems, and our production environments.

We worked with Vanta for continuous compliance monitoring and Prescient Security to conduct the independent audit. Their rigorous assessment confirmed that our controls meet the standards that organizations require when trusting third-party software with their development workflows.

Looking ahead

SOC 2 Type I is a milestone, not a destination. We're committed to maintaining these standards and will continue working toward SOC 2 Type II certification, which evaluates the operational effectiveness of our controls over time.

For customers who require security documentation, we're happy to share our SOC 2 report. Reach out to security@atcyrus.com to request a copy.

Thank you

To our users and partners who trust Cyrus with their development workflows: thank you. This certification reflects our commitment to earning and maintaining that trust through verified security practices.