ISO 27001 is a global security management standard that specifies security management best practices and comprehensive security controls following the ISO 27002 best practice guidance. Ongoing certification under this standard requires effective management of a rigorous security program. The Information Security Management System (ISMS) required under this standard defines how FireHost manages security in a comprehensive and holistic way. Obtaining ISO 27001 certification for our secure cloud infrastructure and business practices required SecureWeb Cloud to:
Thoroughly evaluate our information security risks, including the impact of identified threats and vulnerabilities
Design and implement a comprehensive set of information security controls and other risk management measures to address security risks within our cloud infrastructure as well as our corporate environment
Implement an overarching program to ensure that the information security controls meet the information security needs for both our customers and ourselves on an ongoing basis
Our ISO 27001 certification is specifically focused on the SecureWeb Cloud ISMS and measures how our processes for management of both internal and customer systems follow the ISO standard. Certification requires that an accredited independent auditor perform an assessment of our processes and controls yearly and confirms each business practice is carried out in alignment with the comprehensive ISO 27001 certification standard.
SecureWeb Cloud’s ISO 27001 certification demonstrates our commitment to information security at every level within the organization. Compliance with this global standard demonstrates the robust nature of our security program and provides clarity and assurance for customers evaluating the breadth and strength of our security practices.