As Exabeam moves to cloud-delivered services, the company recognizes that customers are looking for independent assurance the company meets cloud security and privacy requirements, according to Exabeam blog writer Cynthia Gonzalez.
She wrote that Exabeam recognizes one of a company’s most valuable assets is its data, and with independent assessments and certifications, Exabeam now can demonstrate its commitment to ensuring its customers’ data are secure and data privacy rules are followed.
International Organization for Standardization (ISO) is an independent group that develops internationally recognized standards to support innovation and provide solutions to global challenges. Earlier this year, Exabeam completed an assessment from the certification body of Schellman & Company, LLC for ISO 27001, an internationally recognized standard that specifies requirements for establishing, implementing, maintaining and continually improving an information security management system (ISMS) standard.
Achieving ISO 27001 certification demonstrates Exabeam has the appropriate processes in place to maintain the security of sensitive data and helps reduce information security risk for its customers, partners, and employees.
Gonzalez added that Exabeam has achieved two additional certifications: ISO 27017 and ISO 27018. ISO 27017 provides additional controls to address cloud-specific information security threats and risks. ISO 27018 establishes control objectives and guidelines for implementing measures to protect personally identifiable information (PII) for public cloud computing environments.
“The combination of ISO 27017 and 27018 demonstrates commitment to secure cloud operations and the proper handling of personally identifiable information (PII) in the cloud. Where ISO 27001 focuses on an organization’s management of information security risk, 27017 and 27018 are tailored specifically to cloud operations and privacy. Exabeam’s ISO certification offers customers insight into the technical and organizational measures maintained by Exabeam, as required for the security of personal data under GDPR,” she wrote.
