Insuresoft completes 2026 SOC 2 Type II audit for core platform
Insuresoft’s latest Type II report now covers the Policyholder Portal and its AKS-based Azure stack, giving carriers a fresh vendor-risk signal on the Diamond platform.

Insuresoft gave carriers a fresh vendor-risk checkpoint when it said its core platform completed a 2026 SOC 2 Type II examination. For CIOs and security teams evaluating a policy admin system, that matters less as a badge and more as evidence that the vendor has had its controls tested across a real operating period, not just written down in a policy binder.
The examination was conducted by 360 Advanced and covered security, availability, processing integrity and confidentiality. Insuresoft said the report broadened scope to include the Policyholder Portal and documented more of its modernized Azure-based infrastructure, including Azure Kubernetes Service containerized architecture. That is the kind of detail buyers look for when they are trying to separate a platform that merely claims cloud readiness from one that has actually put governance around a cloud-native stack.

The practical value of a Type II report is straightforward: it helps de-risk implementation, data handling and ongoing operations. It does not prove that a platform is the fastest, easiest to configure or the cleanest migration target. It does, however, show whether controls were designed appropriately and operated effectively over a defined period, which is exactly the sort of signal carriers want when a core system is going to sit under policy administration, billing, claims and digital engagement.
That is where Diamond comes in. Insuresoft describes Diamond as an all-in-one enterprise digital insurance platform for personal and commercial lines, with core policy processing, billing, claims, digital engagement and intelligent data built into the same environment. The company has said it has served the property and casualty market for more than 30 years, and third-party company profiles say more than 50 P&C insurers, from startup managing general agents to larger carriers and brokers, trust Insuresoft and the Diamond system. Volaris Group completed its acquisition of Insuresoft in November 2019.
Chief Executive Officer Nancy Schulte said the successful completion of another SOC 2 Type II examination reinforced Insuresoft’s commitment to security, reliability and operational excellence. The company had also announced a SOC 2 Type 2 report in October 2024, making the 2026 result a repeat attestation rather than a first-time milestone. For carriers under pressure to modernize without loosening control, that continuity is the point: the platform’s security story now arrives with a newer audit window, a wider scope and a clearer picture of how its Azure-based architecture is being run.
This article was produced by Prism’s automated news system from verified source data, official records, and press releases, then run through automated quality and moderation checks before publishing. The system is built and supervised by the people who set the standards it runs under. Read our full AI policy.
Did this article answer your question?


