Today we’re pleased to announce that Administrate has achieved ISO 27001:2013 certification. The certification and audit were performed by Coalfire, a cybersecurity audit firm with more than 16 years of experience and more than 1,400 government and commercial clients.
What is ISO 27001?
ISO 27001 is a comprehensive security management standard that specifies a set of best practices and controls. It is an internationally recognised standard, and means that as an organisation we have:
- Examined our information security risks.
- Designed a set of security controls to mitigate these risks.
- Adopted a management process that reviews these controls on an ongoing basis.
- Conducted an internal audit of the above to test for conformity.
- Had an audit conducted by an ISO accredited external party to test for conformity.
The certification is valid for three years but does require annual audits to test for continued conformity.
How Does This Impact Administrate?
Administrate has formally adopted a broad set of security best practices, and this certification confirms our ongoing commitment to the security, confidentiality, and high availability of our services. It’s important to understand that ISO 27001 isn’t just a 'one-off' audit, but an ongoing process of continuous improvement, review, and engagement with security standards and processes.
What Does This Mean for Customers?
You have an assurance that we are operating in a professional manner that highly values security and is compliant with an internationally recognised standard, which has been audited by an accredited third party. This certification also provides additional clarity and assurance to you when evaluating the quality, breadth, and strength of our security practices.
Do you Have More Information on the ISO 27001 Standard?
We recommend you check out the International Standard Organisation’s (ISO) website. They provide plenty of information on what is covered by ISO 27001.
Can I get a Copy of the Report?
At Administrate, we have a commitment to transparency. Therefore, our certificate and auditor’s letter are available on our public Trust page.