The Certification assures Esker on Demand customers that their data is safe, secure and accessible
Sydney, Australia — January 30, 2018 — Esker, a worldwide leader in document process automation solutions and pioneer in cloud computing, today announced that it received ISO 27001:2013 (ISO 27001) certification for its Information Security Management System (ISMS) by A-lign, an independent, third-party auditor. ISO 27001 is the internationally recognised standard for certifying that a company’s ISMS protects its data and that of its customers.
This certification demonstrates that Esker has implemented security measures and countermeasures that protect it from unauthorised access or compromise, that the security of data has been addressed, implemented and properly controlled in all areas of the organisation, and that IT personnel were found to be conscientious and knowledgeable in best practices.
ISO 27001 is invaluable for monitoring, reviewing, maintaining and improving a company’s ISMS. Accredited certification to ISO 27001 demonstrates to existing and potential customers that an organisation has defined and put in place best-practice information security processes and that all internal data and data submitted by customers and suppliers are handled in a secured way.
The benefits of information security, particularly the implementation of ISO 27001, gives partner organisations and customers greater confidence in the way they interact with a business. Benefits to customers are numerous, including:
- Security risks are appropriately prioritised and cost-effectively managed
- Security best practices are in place along with a managed approach to business information protection including risk, governance and compliance
- Defined framework to ensure fulfillment of commercial, contractual and legal responsibilities
“This certification confirms our continued commitment to information security at every level,” said Jean-Michel Bérard, CEO at Esker. “Esker provides a consistent, reliable and secure operating environment to provide the highest quality of service to our customers worldwide.”
About ISO 270001
The International Organisation for Standardisation (ISO) is an independent organisation that develops a variety of standardised processes across numerous industries and sectors in order to offer a uniform method for completing specific actions in a business or governmental setting. ISO 27001 provides an international methodology for the implementation, management and maintenance of information security within a company. ISO 27001 certification requires that an organisation systematically examine its information security risks, taking account of the threats, vulnerabilities and impacts, and implement a comprehensive suite of information security controls to address those risks that are deemed unacceptable. ISO 27001 advocates a plan-do-check-act methodology via an iterative process designed to drive continuous improvement.