How Knak Met Google’s Security Requirements with Software Secured

Knak, a fast-growing SaaS startup in the marketing industry, sells to enterprise giants like Meta, Google, and Uber, all of whom enforce strict security requirements.

While Knak does not handle large amounts of sensitive data, their enterprise customers demand robust security testing to ensure compliance and reduce risk.
‍

To keep up with their growth and evolving security needs, Knak faced several challenges:
● They were releasing new products and migrating to Auth0 for authentication, requiring a thorough security evaluation.
● They needed to maintain SOC 2 Type 2 compliance to move deals forward and reduce financial risk.
● They required comprehensive, industry-standard penetration testing, with the ability to retest as needed and access results through a centralized portal.
● They sought a well-scoped and clearly communicated testing engagement that would allow their clients to participate in the process.
● Previous penetration tests from other vendors were nowhere near what Knak’s clients were looking for.
‍

Finding the Right Security Partner

‍
Given these challenges, Knak needed a trusted security partner that could provide more than just a checkbox penetration test. They required a team that could deliver deep, meaningful security insights and support their compliance efforts with thorough reporting and remediation guidance.
‍

That’s where Software Secured came in. Their Penetration Testing as a Service (PTaaS) model offered the continuous security coverage, transparency, and flexibility that Knak needed to meet their enterprise clients’ stringent security demands.
‍

Joel Chretien, VP Engineering at Knak, shared:
‍

"Having worked with other vendors, I am always impressed with the vulnerabilities found by the Software Secured team. The reproduction steps are always very detailed and easy to follow. They've been very responsive whenever we ask for some ad-hoc testing as part of our PTaaS agreement. Overall, Software Secured has been a great part of our extended team." Joel Chretien, VP Engineering at Knak
‍

How Software Secured Went Above and Beyond

Software Secured quickly engaged with Knak’s team to conduct a comprehensive penetration test, focusing on Auth0 integration security, API security, and role-based access control (RBAC). Key aspects of the engagement included:
● Deep security testing beyond surface-level vulnerabilities.
● Clear, actionable remediation steps to help Knak swiftly resolve security gaps.
● Real-time communication and a centralized portal for tracking security findings.
● A well-defined testing scope and client involvement are needed to ensure Knak’s enterprise customers have visibility in security efforts.
‍

The Impact: Security as a Business Enabler

‍
By working with Software Secured, Knak successfully met their clients’ security expectations, ensured SOC 2 Type 2 compliance, and gained a trusted partner for ongoing security needs.
‍

Calvin Smith, Engineering Manager DevOps & Security at Knak, noted:

‍
"Software Secured's comprehensive penetration testing has been instrumental in fortifying our security posture. Their meticulous approach and detailed remediation guidance have enabled us to meet and exceed our clients' stringent security requirements." - Calvin Smith, Engineering Manager DevOps & Security at Knak
‍

‍

With Software Secured, Knak translated their security investments into business growth, successfully closing deals and solidifying trust with enterprise customers.
For CTOs seeking a security partner that goes beyond compliance and truly strengthens security posture, Software Secured delivers where others fall short.

‍

‍

‍

‍