We’re proud to announce that Cloudera signed the Cybersecurity and Infrastructure Security Agency (CISA) “Secure by Design” pledge, joining a network of industry leaders dedicated to embedding security at every stage of the product lifecycle. To be good stewards of our customers’ data, it is critical for security to be a fundamental component of every product and service we offer–not just an afterthought. This commitment aligns with our ongoing mission to empower organizations to transform their data into valuable insights in the most secure and compliant way possible.
What is the “Secure by Design” Pledge?
The CISA “Secure by Design” pledge encourages technology providers to prioritize security throughout the development process rather than focusing solely on post-production fixes. It is a proactive approach that requires security to be integrated from the initial concept of a product through every phase of design, testing, deployment, and operation. By signing this pledge, Cloudera solidifies its role as a leader in cybersecurity, ensuring that every product feature and service capability meets strict security standards aligned with CISA’s best practices for resilience against cyber threats. Cloudera has pledged to build security protocols directly into our development pipeline, making sure security is robust and ready to defend against both known and unknown threats.
Why is “Secure by Design” so Important?
Protecting sensitive data requires vigilance and an evolving approach to security. Traditional security approaches focus on patching vulnerabilities after a product is deployed in production.
While these responses remain necessary, the “Secure by Design” framework focuses on prevention, embedding security into the DNA of products from day one. The goal is to take a proactive stance against security threats, preventing potential vulnerabilities before they surface, making Cloudera technology more secure and resilient for our Customers – designed with resisting attacks and securing sensitive data in mind.
How Do Cloudera Customers Benefit from Our “Secure by Design” Commitment?
With over 25 exabytes of data under management, Cloudera is committed to being good stewards of our customers’ data by delivering solutions that meet and often surpass modern security standards. This pledge reflects that commitment. Here’s what this means for our customers:
- Enhanced Proactive Security Measures
Every product, feature, and update from Cloudera is built with a security-first mindset. From the beginning stages of development to the deployment of a product, security controls are integrated to protect data, ensuring that vulnerabilities are minimized and managed as part of the core functionality. Customers can rely on Cloudera’s commitment to building security measures into every product, ensuring that potential vulnerabilities are addressed early and thoroughly. - Continuous Security and Compliance Monitoring
As part of our ongoing security management strategy, Cloudera regularly conducts internal and external audits, risk assessments, and continuous security monitoring to ensure compliance with industry standards and regulations such as GDPR, PCI DSS, ISO27001, and more, easing the compliance burden for our customers and supporting risk mitigation. Through this rigorous process, we can address emerging security threats swiftly, keeping our customers’ environments secure. - Collaboration with Pledge Members
Cloudera will attend regular technical exchange meetings with other companies who signed the “Secure by Design” pledge. These meetings promote collaboration and best practices sharing with a community of technology providers who are committed to the security of their products and services, and we can leverage our collective expertise as we implement the pledge. - Support for a Shared Responsibility Model
Security is a shared responsibility between Cloudera and our customers, particularly in hybrid and multi-cloud environments. By building a solid security foundation with the “Secure by Design” approach, Cloudera empowers our customers to operate securely across any infrastructure or data store. We provide tools, insights, and resources that enable our customers to make informed security decisions and achieve the right configurations for their specific environments. - Access to Industry-Leading Security Expertise
Our teams are dedicated to working continuously to support customers with best-in-class security architectures and capabilities tailored to individual needs. With our dedicated Trust Center, customers can explore resources like our shared responsibility model, risk assessments, vulnerability management, and comprehensive documentation around security practices. This commitment extends to ongoing customer engagement, ensuring Cloudera remains a trusted partner through every stage of the security lifecycle. - Building Resilient Data Solutions for a Changing World
With our “Secure by Design” pledge, Cloudera reinforces its dedication to protecting our customers from potential disruptions. Our security features, built into every layer of our data and analytics solutions, provide the flexibility and resilience to meet the demands of a data-driven world. By reducing vulnerabilities upfront, we’re helping our customers focus on what matters most – transforming data into actionable insights – without compromising on security or compliance.
What This Means for the Future of Cloudera and Our Customers
This commitment to the “Secure by Design” pledge is more than just a formal obligation. It’s a testament to Cloudera’s core values of security, trust, and customer success. As cyber threats continue to evolve, so will Cloudera’s security practices, staying at the forefront of secure technology and setting new standards in the industry. Our customers can expect a data platform that safeguards their most important asset while enabling innovation and insights that lead to better business outcomes.
Learn More
To discover how Cloudera’s commitment to security can empower your organization, visit our Trust Center. Here, you’ll find valuable resources on Cloudera’s secure architecture, compliance standards, and risk management practices. Or, if you’re interested in trying Cloudera for yourself, check out our 5-day trial on AWS.
