This week we received the official announcement that we have obtained the ISO 27001 certification, which is verified and awarded by TÜV Süd. This is a great success and milestone for Cloud&Heat! Since not only our Dresden headquarters is now certified, but also the operation of the public cloud in Frankfurt’s Eurotheum, we can now officially guarantee our customers this high security standard.
ISO 27001 is an important standard for the security of information, data and systems – both within the company and where customer data is stored and processed. ISO 27001 attests to a very high level of the Information Security Management System (ISMS). The ISMS standard includes 114 audited controls, corporate policies, and a comprehensive risk analysis and assessment. The ISMS is not only initially set up and implemented, but is also continuously improved and adapted to all conditions of the organization in order to maintain it permanently. For this purpose, both internal and external unannounced audits are carried out. After three years, the audit for re-certification must finally take place again.
The path to certification took place with the close involvement of all employees, who were actively prepared for their tasks and duties within the framework of ISO 27001 in several training courses to be enabled to actively use these on a daily basis.
Further information on ISO/IEC 27001 can be found under the following links: