Sophos, a leading cybersecurity company, has announced that it has achieved the prestigious ISO 27001:2022 certification. This certification, which is the premier international standard for information security, demonstrates Sophos’ commitment to ensuring the highest level of security for its customers and partners. ISO 27001:2022 provides assurance that Sophos has effectively integrated information security, data privacy, and continual improvement into its day-to-day operations.
ISO 27001:2022 is the globally accepted standard for information security. It aims to provide assurance to customers that an organization has implemented effective measures to protect their information and ensures data privacy and continual improvement. This certification is widely recognized and forms the foundation for many other information security certifications, further enhancing Sophos’ reputation in the industry.
In addition to the ISO certification, Sophos has expanded its SOC 2 audit program by adding two new Trust Criteria Principles: Availability and Confidentiality. These principles focus on protecting customer information, ensuring its appropriate handling, and guaranteeing its high availability. Sophos underwent a SOC 2 audit conducted by Coalfire, an accredited external assessor.
Sophos has also achieved the PCI DSS version 4.0 certification for its Managed Detection and Response (MDR) service. The Payment Card Industry Data Security Standard assures customers that an organization can securely store and transmit credit card information. PCI DSS 4.0 incorporates additional controls to ensure the implementation of sophisticated security measures and access controls.
To foster customer trust, Sophos is committed to sharing its audit reports and certifications with customers under a non-disclosure agreement (NDA). Customers can request a copy of these reports from the Sophos Trust Center.
In summary, Sophos’ achievement of the ISO 27001:2022 certification, expansion of its SOC 2 audit program, and attainment of the PCI DSS 4.0 certification demonstrate the company’s dedication to information security and customer trust. By adhering to the highest standards in safeguarding sensitive information, Sophos continues to establish itself as a leader in the cybersecurity industry.
Key Points:
– Sophos has achieved the ISO 27001:2022 certification, demonstrating its commitment to information security.
– The ISO certification ensures that Sophos has integrated information security, data privacy, and continual improvement into its operations.
– The expansion of Sophos’ SOC 2 audit program includes two new Trust Criteria Principles: Availability and Confidentiality.
– Sophos has achieved the PCI DSS 4.0 certification for its Managed Detection and Response service.
– Customers can request Sophos’ audit reports and certifications through the Sophos Trust Center under a non-disclosure agreement.
SEO Headers:
– Sophos Achieves ISO 27001:2022 Certification for Information Security
– What is ISO 27001:2022 and Who is it Designed for?
– Sophos Expands SOC 2 Audit Program with New Trust Criteria Principles
– Sophos Attains PCI DSS 4.0 Certification for Managed Detection and Response
– Sharing Sophos Audit Reports and Certifications to Foster Customer Trust