Confirmation.com announced today that it has earned the ISO 27001 certification as a result of its commitment to security and operational excellence. Confirmation.com provides secure electronic audit confirmation services for public and private companies, non-profits and government agencies.
“Many of our clients include global financial institutions and accounting firms that adhere to very rigorous security practices in order to protect their clients’ information, and rely on us as a service provider to adopt the same high-level standard,” said Chris Schellhorn, CEO of Confirmation.com. “We are thrilled to achieve an ISO 27001 certification because it’s the best way to assure our clients that Confirmation.com has implemented an ISMS to help protect their clients’ data and to help secure the information processed through our systems.”
The International Organization for Standardization and the International Electrotechnical Commission joined together to create the ISO 27001 Certification in 2005 as the international security standard. ISO 27001 outlines the requirements for creating, implementing and maintaining a documented information security management system.
Confirmation.com’s ISO 27001 certification was issued by BrightLine CPA & Associates, Inc., which Confirmation.com uses for its SOC 1, 2 and 3 examinations. The company’s ISMS deals with its online audit confirmation service, data, data environments, servers, source code, internal networks and logical security and availability controls of the company’s production servers. Confirmation.com had to undergo a risk assessment on the scope of its ISMS and implement the relevant controls in order to achieve the ISO 27001 certification. The certification is valid for three years and requires regular onsite inspections.
“Since our service involves the transfer of confidential information between the auditor and the financial institution, our company undergoes security audits from many of these entities on a regular basis,” said Jim Hamilton, chief technology officer of Confirmation.com. “By successfully completing an ISO certification, it proves that our company is committed to the highest information security standards. With Confirmation.com’s global reach, this certification is definitely an added plus because it is highly respected and recognized among the international information technology industry.”