Press Release

Sonar Achieves ISO27001:2022 Certification

Achievement further recognizes the strength of Sonar’s commitment to maintaining the highest standards of internal compliance, security, and information management

AUSTIN – February 27, 2024 Sonar, the leading Clean Code solution provider, today announced its information security management system (ISMS) is certified to the latest version of the ISO20071 standard: ISO27001:2022. The certification, from the International Organization for Standardization (ISO), mandates numerous controls for the establishment, operation, monitoring, maintenance, and continual improvement of an ISMS. Achieving the certification validates Sonar’s deep-rooted methodologies for business, people, and IT processes, and its ability to identify, manage, and reduce risk to sensitive and proprietary data. 

“Receiving this certification demonstrates our robust and mature approach to internal security management, as we work toward upholding the highest security standards. This certification is a reflection of the confidence our customers have in our ability to meet complex compliance requirements,” said Andrea Malagodi, CIO of Sonar. “Our internal security team and the entire company are committed to the ongoing advancement of our ISMS, and continued vigilance around the ISO27001:2022 standard.”

An independent body made up of an extensive global network of individual experts in different areas, ISO identifies what International Standards are required by businesses, governments, and society. It develops the standards in partnership with the sectors that will put them to use, adopts them by transparent procedures based on international input, and delivers them to be implemented worldwide. The security management standard ISO27001:2022 specifically details security management best practices and comprehensive security controls. Earning the certification, which requires a third-party ISMS audit, validates Sonar’s customer-first approach and emphasizes its expertise in Information Security and Assurance as well as its strength in Risk Management.

As Sonar continues to grow as a company and innovate our Clean Code solutions (SonarLint, SonarQube, and SonarCloud), it is committed to keeping with the top best practices for ensuring internal security. Today, Sonar serves over 550,000 organizations (representing over half of the Fortune 100), and the security and integrity of its people, processes, data, and technology do and will always remain paramount. 

About Sonar   

Sonar equips organizations to achieve and sustain a Clean Code state by empowering developers to write consistent, intentional, adaptable, and responsible code. Clean Code produces software that is maintainable, reliable, and secure, allowing development teams to spend less time fixing issues and more time innovating. With Sonar, and by employing the company’s Clean as You Code methodology, organizations minimize risk, reduce technical debt, increase productivity, and derive more value from their software in a predictable and sustainable way.

Sonar’s open source and commercial products – SonarLint, SonarCloud, and SonarQube – support over 30 programming languages, frameworks, and infrastructure technologies. Trusted by more than 500,000 organizations and used by more than 7 million developers globally to clean more than half a trillion lines of code, Sonar is integral to delivering better software. 

To learn more about Sonar, please visit

Media Contact  

Katie Hyman

Senior PR Manager for Sonar  

(707) 291-1469

want to learn more about Sonar?

Request a DemoAbout Us