Digital Security and Governance
The best digital experiences begin with customer trust.
Keep your content and customer data secure with a platform that knows good digital experiences are safe ones.
Minimize Security Risks
The Safest Platform for Drupal
Minimize the risk of security incidents with a fully managed platform with built in security to protect your Drupal applications from malicious attacks. Acquia provides robust security features, an extensive industry compliance portfolio, and advanced security offerings (WAF, bot management, etc.) to help you secure your content from day one.
Enabled Security Features
Secure out-of-the-box with security features like IPv6 Support, SSH Shell Access, and Customer WAF Support
Managed Security Services
Get Automated Drupal Security Updates, Vulnerability Scans, and Platform security audits and updates all personally managed by Acquia
Meet standards across a variety of industries with FedRAMP Authorization, PCI, HIPAA, GDPR, SOC Type 1 and SOC Type 2, and more
Enforce Roles & Permissions
Give users partitioned access and permissions to job-specific parts of the platform
Define, group, and manage content and website functionality, policies, and standards
Automated Global Updates
Enforce and automate global updates for all your sites, leaving no site vulnerable
Secure by Design
Designed to be highly secure, with a 30+ person security team, Drupal is trusted by the most mission critical websites in the world. 10K contributors means that bugs can’t hide and makes the platform one of the most secure and stable platforms on the market.
Drupal Steward Program
Acquia is a committed member of the Drupal Steward Program, a web application firewall that bridges the gap between security release announcements and site updates with security patches
Expert Security Team
The Drupal project has a 30+ person security team who handles confidential reports of security problems and reviews covered modules
Advanced Security Features
Get an adaptable system designed to meet your needs. Offering password policy and reset rules, IP whitelisting for access, audit log settings, and more.
Thwart DDoS attacks before they reach your site, preempt threats in under 10 seconds, Web Application Firewall protects your site from threats, and beyond
Speed up app delivery and ensure availability with 200+ PoPs, cut load times by up to 50% for static and dynamic content, and block DDoS attacks
Detect unknown bots and compile real-time and historical reporting on your site bot traffic