Skip to content
Find Trane Rep

Cybersecurity

Best practices, built into our solutions.

Business data analysis and analytics of customers insights with charts

Every day, new cyber threats emerge around the world. Although most businesses are quick to devote resources to IT cybersecurity, connected building automation systems often go under-protected or even overlooked altogether. Yet, they are increasingly a target of cyber attacks. The fact is, with the convenience of network-connectivity and remote access come inevitable security threats

At Trane, we help protect you in the following ways:

  • Trane delivers industry-leading products and solutions that can be deployed securely
  • Out-of-the-box simplicity for complex cybersecurity features
  • Standard features simplify sales process, installation and maintenance

Standards and Compliance

At Trane, we take cyber threats very seriously by integrating cybersecurity best practices into our entire line-up of building automation systems. Our controls are designed to proactively provide protection against incidents using tools such as encryption, multiple layers of access control and authentication to protect your data. Read below to learn more about some of the compliance standards we have met and certifications our products have earned:

SOC2 Type 2 Certified

SOC 2 Type 2 Compliance is a 3rd party compliance audit focused on client data security. Trane products (Tracer® SC+, Symbio® 800, Tracer® TU, Tracer® Ensemble®, Trane Intelligent Services®, Trane® Connect®) are SOC 2 Type 2 Compliant. The report describes the Trane controls environment and external audit of Trane controls that meet the AICPA Trust Services Security Criteria.

Learn more

BTL Certified

All Trane controls devices are BTL certified. This means that all the BACnet™ functionality provided in the device has been tested by an independent laboratory and has passed the set of standardized tests.

Learn more

TX-RAMP Certified

The Texas Risk and Authorization Management Program (TX-RAMP) is a standardized approach for security assessment, authorization, and continuous monitoring of cloud computing services that process the data of a state agency. Trane’s cloud offerings (Tracer® Ensemble®, Trane® Connect® and Trane Intelligent Services®) are TX-RAMP certified.

Learn more

ISA/IEC 62443-4-1 SDLA Certified

The ISASecure SDLA certifies compliance to IEC 62443-4-1 Security for industrial automation and control systems Part 4-1: secure product development lifecycle requirements (published as ANSI/ISA-62443-4-1). The certification attests that Trane’s product development lifecycle process has been evaluated under the ISASecure SDLA certification program and shown to meet the technical criteria. All Trane products comply with this certification.

Learn More

CMMC Level 2 Certified

The Cybersecurity Maturity Model Certification (CMMC) is a U.S. Department of Defense (DoD) program designed to verify that DoD contractors have implemented sufficient cybersecurity controls to protect sensitive information, particularly Controlled Unclassified Information (CUI).

About CMMC

Related Blog

Software, coding hologram and woman on tablet thinking of data analytics, digital technology and night overlay. Programmer or IT person in glasses on 3d screen, programming and cybersecurity research

Smart Building Cybersecurity: Risks, Fears and Solutions

As building automation systems become increasingly interconnected, builders, manufacturers, and owners can work together to benefit from them without compromising security.
Read our blog

Product Security

Learn how we use responsible vulnerability management to better ensure the safety and security of our products and connected solutions, or to report a potential vulnerability.

Read More About Product Security