# Enterprise Readiness StepSecurity is built with the needs of modern enterprises in mind. We offer robust security, compliance, and integration features to ensure seamless adoption across large organizations. ### Security & Compliance * **Compliance Certifications**:\ StepSecurity is **SOC 2 Type II** and **ISO/IEC 27001** compliant. These certifications demonstrate our commitment to industry-standard security and operational practices.\ We also conduct **annual Vulnerability Assessment and Penetration Testing (VAPT)** to proactively identify and address potential risks. * **Access to Reports**:\ Compliance and VAPT reports are available upon request for enterprise customers and security teams conducting due diligence. ### Single Sign-On (SSO) We support [**SAML-based SSO**](/admin-console/security-and-auth.md) to simplify secure user access and identity management. StepSecurity integrates seamlessly with leading identity providers, including: * [Okta](/admin-console/security-and-auth/setting-up-okta-sso.md) * [Google Workspace](/admin-console/security-and-auth/setting-up-google-sso.md) * [Microsoft Entra ID (formerly Azure AD)](/admin-console/security-and-auth/setting-up-microsoft-entra-azure-ad.md) This ensures centralized authentication and access controls in line with your existing organizational policies. ### Seamless Workflow Integration StepSecurity is designed to integrate into your existing security and engineering workflows without requiring teams to change how they work. Our platform supports: * [**GitHub Checks**](/github-checks.md): See security status and enforcement results directly in your GitHub pull requests. * [**Slack / Microsoft Teams Webhooks**](/settings/notifications.md): Get real-time alerts and policy updates where your teams already collaborate. * [**Amazon S3 Integration**](/admin-console/integrations/s3-integration.md): Export logs, reports, or artifacts directly to your S3 buckets for long-term storage or downstream analysis. ### AWS Marketplace Availability StepSecurity is available on [AWS Marketplace](https://aws.amazon.com/marketplace/pp/prodview-maeh2xznigdi4?applicationId=AWSMPContessa\&ref_=beagle\&sr=0-1), offering enterprises a streamlined way to procure and manage our solution. By listing on AWS Marketplace, StepSecurity makes it easier for enterprises to adopt our solution through familiar procurement channels. This approach reduces contract complexity and accelerates onboarding while aligning with your internal billing systems. ### Programmatic management of the platform StepSecurity provides full programmatic control of the platform so teams can automate configuration, integrate with existing workflows, and manage security settings as code. * **API Access:** Everything on the StepSecurity dashboard is powered by public APIs. These APIs are documented directly in the app and provide [tenant](/admin-console/integrations/stepsecurity-api-tenant-access.md) and [organization](/settings/stepsecurity-api-org-access.md) level locations to access the Swagger documentation. * **Terraform provider:** StepSecurity provides a [Terraform provider](/admin-console/integrations/terraform-provider.md) that allows you to manage the StepSecurity platform in a code repository with version control and change history. --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.stepsecurity.io/enterprise-readiness.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.