ISO/IEC 27001:2022 Compliance

ISO/IEC 27001:2022 Compliance

ISO/IEC 27001:2022 — the world’s best-known standard for information security management—defines the requirements that security systems must meet. DataBank follows the certification requirements to promote a holistic approach to information security—vetting people, policies, and technology—to assure information security management systems are implemented according to this standard for risk management, cyber-resilience, and operational excellence.

DataBank received certification from ISO—the International Organization for Standardization—for our internal corporate IT systems as well as all our colocation data centers in the U.S. hosting customer IT infrastructures. The ISO/IEC 27001 standard provides guidance for establishing, implementing, maintaining, and continually improving information security management systems. Conformity with the standard also signifies DataBank has implemented a system to manage risks related to the security of our data, and the system follows all the best practices and principles enshrined in the standard. 

Implementing the information security framework specified in the ISO/IEC 27001:2022 standard enables DataBank to achieve multiple objectives:

• Reduces vulnerabilities to the growing threat of cyberattacks.
• Enables us to respond to evolving security risks.
• Ensures assets such as financial statements, intellectual property, employee data, and information entrusted by customers and vendors remain undamaged, confidential, and available.
• Provides a centrally managed framework that secures all information in one place.
• Prepares people, processes, and technology throughout our organization to face technology-based risks and other threats.
• Secures information in all forms, including paper-based, cloud-based and digital data.

By receiving ISO/IEC 27001:2022 certification, DataBank demonstrates to stakeholders and customers across the globe that we are committed and able to manage information securely and safely.