06-26-18 | Blog Post
We’re very excited to announce that each of our five data centers as well as our headquarters are officially certified as ISO 27001 compliant! We received the good news from our auditors this month. The entire process took about four months–much faster than we or our auditors expected.
What’s so special about this? What is ISO 27001, anyway?
Well, ISO 27001 is one in a set of standards that specifically outlines the requirements for establishing, implementing, maintaining and continually improving an Information Security Management System (ISMS) within the context of the organization. It also includes requirements for the assessment and treatment of information security risks tailored to the needs of the organization. There are about a dozen standards in the ISO 27000 family, but 27001 is what’s known as a management standard–meaning you can be certified against it.
There are 14 specific controls the ISMS must meet in order to be certified as compliant, listed below:
We are very pleased that we have passed each of these controls with no exceptions, meaning the auditor had no suggestions for improvement to meet the standard. We firmly believe in a company-wide culture of compliance, and it’s rewarding to see that culture reflected by way of our successful audit(s)!