The ISO 27001 audit specifies the requirements for establishing, implementing, operating, monitoring, reviewing, maintaining and improving a documented Information Security Management System (ISMS), while taking into account the organization’s overall business risks. A neutral, independent agency conducts the audit and assesses the operation of the SaaS-hosted environment, as well as all available applications, IT systems, processes and services provided by the organization’s employees and contractors.
“We are excited to earn this certification for our SaaS customers. This new certification helps to assure Cherwell customers that we are committed to ongoing development and maintenance of a robust Information Security Management System that an independent, third-party auditor will regularly review and certify,” said Timothy Pfeifer, Cherwell’s Co-founder, EVP and General Counsel.
While most companies rely on spreadsheets to track security and compliance, the Cherwell IT and security teams worked together to create a Governance, Regulatory and Compliance module built on the Cherwell Service Management® platform. This solution will soon be available to Cherwell customers and partners free of charge as a “merge-able application,” or “mApp,” within the Cherwell mApp Exchange.
“Utilizing our own instance of Cherwell Service Management was instrumental in automating and tracking our compliance efforts. We are looking forward to making this solution available to our partners and customers,” said Tom Hoagland, VP of IT and Security.
Those interested in confirming Cherwell Software’s ISO 27001 Certification can visit BSI Group’s Client Directory and enter the company name, ‘Cherwell Software, LLC’ or Certificate Number ‘634791’
* Source: Cherwell Software Press Release – https://www.cherwell.com/about/newsroom/press-releases/2015/10/cherwell-software-achieves-iso-27001-certification-for-us-hosting-business