Trust

Security & Compliance

We practice what we preach. Piscium's platform and infrastructure are built with the same security rigor we deliver to our customers.

Security Status

Active

All systems operational — continuous monitoring enabled

SOC 2 Type IIISO 27001GDPR

Certifications & Compliance

Annual SOC2 Type II audit covering security, availability, and confidentiality trust service criteria.

Information security management system certified to international standards.

Full compliance with EU General Data Protection Regulation. Data processing agreements available on request.

Enterprise-grade security practices protecting your most critical infrastructure data.

All data encrypted in transit (TLS 1.3) and at rest (AES-256). Encryption keys managed via hardware security modules.

Role-based access control with mandatory multi-factor authentication. Privileged access reviewed quarterly.

SAST, DAST, and SCA integrated into our CI/CD pipeline. All code reviewed before merge. Dependency updates automated.

Documented incident response plan with defined SLAs. 24/7 security monitoring and on-call rotation.

Annual third-party penetration testing with continuous internal validation using our own platform.

Guide

NERC CIP Compliance and CTEM: A Practical Guide

How continuous threat exposure management maps to NERC CIP standards CIP-002 through CIP-013.

Whitepaper

The CTEM ROI Framework: Quantifying Risk Reduction in OT Environments

A practical framework for calculating the return on investment of continuous threat exposure management.

Whitepaper

OT Security Maturity Model: A 5-Stage Assessment Guide

Assess your organization's OT security maturity across five stages from ad hoc to optimized.

Our security team is happy to discuss our practices, provide compliance documentation, or answer vendor security questionnaires.