CISOs have plenty of reasons to worry. Malware and phishing are becoming more sophisticated, continuously leveraging new and unknown vulnerabilities to easily bypass conventional security solutions including firewalls and web gateways. With so many new security solutions the last thing a CISO wants to worry about is whether its security vendors have the right controls and processes in place to ensure customer data.
So, who is minding the store when it comes to security best practices? That’s where ISO/IEC 27001 certification comes in. ISO/IEC 27001 is a family of standards for identifying, analyzing, and addressing information risks. Risks can include data loss or theft, physical threats, and more. Organizations concerned about security risks expect this certification from their vendors. To earn this certification an organization must undergo an extensive process that requires preparing a security gap analysis and implementation plan, executing the plan, and undergoing several audits.
At Fireglass we take our security responsibilities seriously. Since security is our business we want to assure our customers that we practice what we preach. Over the last year, we devoted considerable time and resources to implementing stringent information security standards which enabled us to receive the prestigious ISO/IEC 27001 security certification.
For more information about Fireglass’ ISO/SEC 27001 certification, read the press release.