// Trust & Security Report
Cybereason Inc. (acquired by LevelBlue)
AI-driven Extended Detection and Response (XDR) platform with next-generation antivirus (NGAV), endpoint detection and response (EDR), managed detection and response (MDR), threat hunting, and incident response services. Offers both cloud and on-premise deployment options.
Certifications held
8
Maturity
Enterprise
Trains on your data
No
Trust center
Yes
// Certification ledger
Each held certification is backed by a verbatim quote from the vendor's own trust or security page. “Not confirmed” means we could not verify it publicly, not that the vendor lacks it.
Verify on cybereason.com“Cybereason has achieved SOC2 TYPE 2 certification. The company has Deloitte conducting a SOC-2 audit.”
Verify on cybereason.com“Cybereason holds ISO-27001 Information Security Management standard. Audited by IQC.”
Verify on cybereason.com“Cybereason holds ISO-27017 Cloud Service Provider Security standard. Audited by IQC.”
Verify on cybereason.com“Cybereason holds ISO-27018 Privacy in Cloud Services standard. Audited by IQC.”
Verify on cloudsecurityalliance.org“Cybereason obtained STAR Level 1 certification on December 26, 2017, covering the CAIQ (Consensus Assessments Initiative Questionnaire) assessment.”
Verify on cybereason.com“Cybereason complies with the General Data Protection Regulation ('GDPR') and all privacy laws applicable to Cybereason's business.”
Verify on cybereason.com“Cybereason is certified to the EU-U.S. Data Privacy Framework (EU-U.S. DPF), the UK Extension to the EU-U.S. Data Privacy Framework, and the Swiss-U.S. Data Privacy Framework.”
Verify on cybereason.com“Cybereason is AV-TEST Approved for Corporate Endpoint Protection certification.”
> Show 3 unconfirmed / not-held certifications
source: cybereason.comNo public evidence of HIPAA certification found on vendor domain. While Cybereason mentions on-premise options for compliance-sensitive organizations, HIPAA is not listed among certifications.
source: cybereason.comNo public evidence of PCI DSS certification found on vendor domain.
source: cybereason.comNo public evidence of FedRAMP certification found on vendor domain.
// Privacy & AI training
Trains on customer data
No
Data processing agreement
Offered
Data region
Multi-region: United States (La Jolla, San Diego, CA), Germany (Munich), United Kingdom (London). Specific geographic data restriction options not documented in public privacy policy.
Privacy policy explicitly separates customer data submitted to the service (governed by separate License and Services Agreement) from Cybereason's own data processing under the consumer privacy notice. Machine learning models are trained on historical threat data and analyst feedback, not customer operational data. Cybereason states: 'This Privacy Notice does not apply to personal data that our customers upload or otherwise submit to the Services, that we process on our customers' behalf.'
// Security controls
Encryption in Transit
Standard encryption protocols for data in transit; details in vendor documentation
cybereason.comRole-Based Access Control
Strict access control policy with role-based access configuration on a per-need basis
cybereason.comSecure Development Lifecycle
SDLC includes Cybereason Security Team involvement in all R&D processes: security requirements, design, code reviews, and penetration tests based on OWASP guidelines
cybereason.comData Protection Measures
Technical and organizational measures to protect against accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or access to personal data, including GDPR Article 32 compliance
cybereason.comSubprocessor Management
Data Processing Agreement includes subprocessor list with documented oversight
cybereason.com// Products & data scope
data: Collects and analyzes 100% of endpoint and integrated security telemetry in real-time. Processes 23+ trillion security events per week. Integrates 65+ data sources (identity, workspace, network, cloud, endpoint, mobile, OT).
AI-driven correlation of security events across endpoint, cloud, application, and user layers. Behavioral threat detection using machine learning trained on historical threat patterns and analyst feedback.
data: Endpoint telemetry including process behavior, file activity, network connections
NGAV integration with next-generation antivirus, behavioral analysis, fileless attack detection, ransomware prediction, remediation automation
data: 24/7 monitoring and threat hunting across customer environments
Proactive threat hunting, 24x7x365 monitoring, incident response orchestration, available as MDR Complete bundle
data: Same as cloud offerings, deployed in customer infrastructure
On-premise deployment option designed for organizations with strict compliance and air-gap requirements
// At a glance
Pricing model
SaaS subscription model with tiered plans (EDR, MDR, XDR) and managed services options
Self-hostable
Yes
// How we verified this
Every certification marked HELD is confirmed against a verbatim quote on Cybereason Inc. (acquired by LevelBlue)'s own trust, security, or privacy pages. We reject certifications claimed only on third-party aggregators, on a cloud host's behalf, or by a similarly named company.
Last verified 2026-07-06. Compliance changes over time. Always confirm directly with the vendor before relying on any certification for a purchasing or compliance decision.
cybereason.com