At the end of 2022, Easi was audited for our ISO 27001 certificate.
It is with great pleasure that we can announce, for the first time in 5 years, we successfully passed this audit without any nonconformity!
This means that we had no errors in the audit!
What does ISO 27001 mean?
ISO 27001 is an international recognized standard on how to manage information security.
In my opinion, this is unmistakable evidence that our Information Security Management System (ISMS) related to Cloud2be has matured over the past years.
Cloud2be is and remains a secure place to store your data, fully managed by a team of professionals.
Furthermore, our SOC (Security Operations Center) is as from today officially ISO 27001 certified!
There is no reason to not use our SOC services: You arrive in a stable, well secured environment where all procedures are followed according to the ISO 27001 norm.
But what does it mean if you receive a nonconformity?
Well, it is not pleasant, and it means that your ISMS is not functioning as it should.
Major nonconformity
The external auditor can issue a major nonconformity if Easi does not fulfill a requirement of the ISO 27001 standard.
We do not want that to happen: It is a profoundly significant issue that must be addressed immediately. Until this is not addressed, the certificate will not be granted.
Minor nonconformity
That is a nonconformity that is not a major nonconformity. It must be addressed before the next audit, otherwise it automatically becomes a major, and the certificate is not re-issued. Minors must always be addressed, and they will be re-evaluated at the next audit.
Opportunity for improvement
If the auditor feels that something is more-or-less okay, it will be flagged as an opportunity for improvement. It does not need to be addressed in a formal way, but at the next audit they will pay extra attention to see if this was considered. You can consider this as a very minor nonconformity. But this is not a showstopper for re-issuing the certificate.
What is the conclusion of all this? It means the Easi organization is a mature organization in terms of security. Our Executive Management fully supports the continuous actions we take every day (and night) to further secure our Cloud2be and SOC environments.
You as a customer can only benefit from this.
Cloud2be: "The Cloud you want to be in!".
