Overview
Davra is a leading IoT software company empowering businesses to harness the potential of connected devices. Davra’s Application Enablement Platform (AEP) enables businesses to build, deploy, and manage enterprise applications at scale, leveraging the latest IoT and AI technologies. By collecting data from wireless sensors, they enable customers to remotely monitor machines, locations, and processes, and provide real-time analytics about asset health, operational efficiency, health and safety, and more.
Service Provided
- SOC 2
Challenge
With goals including an ongoing expansion into the United States market, Davra knew SOC 2 compliance would be key to its success. Already holding ISO/IEC 9001 and 27001, SOC 2 was a natural progression in strengthening their security and compliance posture.
Having chosen Drata as its audit platform, it was essential to Davra to find a SOC 2 auditor who understood the platform’s significance. Due to their Drata integration providing a seamless experience and cost-effective, modern approach to auditing, Davra ultimately signed with Sensiba.
“The smoothness of the audit and the ease with which everything was completed is what has us coming back to Sensiba for future audits.”
Darragh GlynnData and Compliance Manager, Davra
Solution
With deadlines set for its SOC 2 audit (driven by current audit periods ending), Davra began its SOC 2 journey. Having integrations directly with the Drata platform and AI-powered audit tools, Sensiba provided an audit experience that Glynn shared was, “seamless and nothing like we’ve experienced before.”
Having originally set out to complete one of the SOC 2 Trust Services Criteria, Sensiba discovered through the scoping phase that Davra could add another two without drastically increasing the workload. “Everything was relevant to us as a company, and nothing was neglected,” shared Glynn.
Once the audit was underway, Sensiba’s AI- powered audit technology and team of experienced professionals began working to complete the audit within the deadline. This was achieved, with Davra completing their current SOC 2 in a more seamless and efficient manner than they’d experienced in the past.
Result
Having completed their SOC 2, Davra is already seeing the benefits. It’s a necessity for them to show their commitment to security and constantly improving, and is key to winning new business and expanding into new markets. Internally, this has created a mature culture, including “clear onboarding procedures, clear training, standards, and being able to expand as a company without people not being on the same page or having silos,” said Glynn.
With SOC 2 completed, Davra is planning to continue its expansion within the U.S., and continuing to evolve its compliance posture with standards like the EU Cybersecurity Law, NIST 2, and others. Having SOC 2 puts Davra in a good position to comply with these new standards.
For those looking at SOC 2, Glynn shared his advice: “The whole team has to be on board from executive to project teams. It’s a whole business effort. Go slow and build on it.”
Ready to get started?
Find out how our GRC team can help you with your compliance. Contact us to learn more about how we can work together toward your goals.
Case Studies
Ready for more inspiration? Dive into additional client success stories where we showcase diverse projects, innovative solutions, and the transformative impact we’ve had on businesses like yours.
