// Trust & Security Report

    Cybereason Inc. (acquired by LevelBlue) logo

    Cybereason Inc. (acquired by LevelBlue)

    AI-driven Extended Detection and Response (XDR) platform with next-generation antivirus (NGAV), endpoint detection and response (EDR), managed detection and response (MDR), threat hunting, and incident response services. Offers both cloud and on-premise deployment options.

    Certifications held

    8

    Maturity

    Enterprise

    Trains on your data

    No

    Trust center

    Yes

    // Certification ledger

    Each held certification is backed by a verbatim quote from the vendor's own trust or security page. “Not confirmed” means we could not verify it publicly, not that the vendor lacks it.

    SOC 2 Type 2
    HELD

    Cybereason has achieved SOC2 TYPE 2 certification. The company has Deloitte conducting a SOC-2 audit.

    Verify on cybereason.com
    ISO 27001
    HELD

    Cybereason holds ISO-27001 Information Security Management standard. Audited by IQC.

    Verify on cybereason.com
    ISO 27017
    HELD

    Cybereason holds ISO-27017 Cloud Service Provider Security standard. Audited by IQC.

    Verify on cybereason.com
    ISO 27018
    HELD

    Cybereason holds ISO-27018 Privacy in Cloud Services standard. Audited by IQC.

    Verify on cybereason.com
    CSA STAR Level 1
    HELD

    Cybereason obtained STAR Level 1 certification on December 26, 2017, covering the CAIQ (Consensus Assessments Initiative Questionnaire) assessment.

    Verify on cloudsecurityalliance.org
    GDPR Compliance
    HELD

    Cybereason complies with the General Data Protection Regulation ('GDPR') and all privacy laws applicable to Cybereason's business.

    Verify on cybereason.com
    EU-U.S. Data Privacy Framework (DPF)
    HELD

    Cybereason is certified to the EU-U.S. Data Privacy Framework (EU-U.S. DPF), the UK Extension to the EU-U.S. Data Privacy Framework, and the Swiss-U.S. Data Privacy Framework.

    Verify on cybereason.com
    AV-TEST Corporate Endpoint Protection
    HELD

    Cybereason is AV-TEST Approved for Corporate Endpoint Protection certification.

    Verify on cybereason.com
    > Show 3 unconfirmed / not-held certifications
    HIPAA
    NOT CONFIRMED

    No public evidence of HIPAA certification found on vendor domain. While Cybereason mentions on-premise options for compliance-sensitive organizations, HIPAA is not listed among certifications.

    source: cybereason.com
    PCI DSS
    NOT CONFIRMED

    No public evidence of PCI DSS certification found on vendor domain.

    source: cybereason.com
    FedRAMP
    NOT CONFIRMED

    No public evidence of FedRAMP certification found on vendor domain.

    source: cybereason.com

    // Privacy & AI training

    Trains on customer data

    No

    Data processing agreement

    Offered

    Data region

    Multi-region: United States (La Jolla, San Diego, CA), Germany (Munich), United Kingdom (London). Specific geographic data restriction options not documented in public privacy policy.

    Privacy policy explicitly separates customer data submitted to the service (governed by separate License and Services Agreement) from Cybereason's own data processing under the consumer privacy notice. Machine learning models are trained on historical threat data and analyst feedback, not customer operational data. Cybereason states: 'This Privacy Notice does not apply to personal data that our customers upload or otherwise submit to the Services, that we process on our customers' behalf.'

    // Security controls

    Encryption in Transit

    Standard encryption protocols for data in transit; details in vendor documentation

    cybereason.com

    Role-Based Access Control

    Strict access control policy with role-based access configuration on a per-need basis

    cybereason.com

    Secure Development Lifecycle

    SDLC includes Cybereason Security Team involvement in all R&D processes: security requirements, design, code reviews, and penetration tests based on OWASP guidelines

    cybereason.com

    Data Protection Measures

    Technical and organizational measures to protect against accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or access to personal data, including GDPR Article 32 compliance

    cybereason.com

    Subprocessor Management

    Data Processing Agreement includes subprocessor list with documented oversight

    cybereason.com

    // Products & data scope

    Cybereason XDR PlatformExtended Detection & Response

    data: Collects and analyzes 100% of endpoint and integrated security telemetry in real-time. Processes 23+ trillion security events per week. Integrates 65+ data sources (identity, workspace, network, cloud, endpoint, mobile, OT).

    AI-driven correlation of security events across endpoint, cloud, application, and user layers. Behavioral threat detection using machine learning trained on historical threat patterns and analyst feedback.

    Endpoint Detection and Response (EDR)Endpoint Security

    data: Endpoint telemetry including process behavior, file activity, network connections

    NGAV integration with next-generation antivirus, behavioral analysis, fileless attack detection, ransomware prediction, remediation automation

    Managed Detection and Response (MDR)Managed Services

    data: 24/7 monitoring and threat hunting across customer environments

    Proactive threat hunting, 24x7x365 monitoring, incident response orchestration, available as MDR Complete bundle

    Cybereason On-PremiseDeployment Option

    data: Same as cloud offerings, deployed in customer infrastructure

    On-premise deployment option designed for organizations with strict compliance and air-gap requirements

    // At a glance

    Pricing model

    SaaS subscription model with tiered plans (EDR, MDR, XDR) and managed services options

    Self-hostable

    Yes

    // How we verified this

    Every certification marked HELD is confirmed against a verbatim quote on Cybereason Inc. (acquired by LevelBlue)'s own trust, security, or privacy pages. We reject certifications claimed only on third-party aggregators, on a cloud host's behalf, or by a similarly named company.

    Last verified 2026-07-06. Compliance changes over time. Always confirm directly with the vendor before relying on any certification for a purchasing or compliance decision.

    cybereason.com

    > Browse all vendor trust reports