Deploying within minutes without agents.

We care about fast and straightforward rollouts and designed Lumos with security and efficiency top of mind. By connecting with native Office 365 and GSuite APIs, you receive a source of truth for all your applications. No agents, network access, or other end-user installs are required.

SOC 2 Type II.

The Service and Organization Controls (SOC 2) is an industry-recognized attestation report given to a company after an audit of the company’s internal practices. Our SOC 2 report demonstrates that we have the appropriate controls in place to keep customer data secure, confidential, and available.

Encrypted with highest standards.

We encrypt at transit and at rest with secure protocols, including AES256 and TLS1.2+. Our encryption keys are based on AWS's Key Management Service. We rotate them on a periodic basis and protect the creation, storage, retrieval, and destruction of secrets.

Keeping our networks safe.

We deploy our infrastructure on a secure Virtual Private Cloud (VPC). We maintain compute and storage infrastructure in private-only subnets and control access through IP and port-based firewalls. Endpoint monitoring software on employee workstations and servers ensure that we keep our infrastructure secure and your data safe.

Penetration Testing

We regularly work with third party firms to identify and remediate security vulnerabilities. We welcome vulnerability report submissions.

Security Controls

We continuously monitor the operation of our security controls. This ensures we stay up to date and follow best practices (e.g. MFA).

Employee Training

We require security training from all employees. All developers complete a secure coding training which includes the OWASP Top 10 vulnerabilities.

You already use Okta or BetterCloud? Great! Click here to find out about how Lumos fits into your current tech stack.

The Lumos Identity Platform

Go back to the main page and find out how you can discover, unite and manage all your apps and identities with Lumos.