Woodbridge, VA – Sev1Tech is pleased to announce that it has successfully achieved the compliance of extended security controls that are part of the 27017:2015 Cloud Security Certification standards. The cloud offers many benefits, allowing customers to utilize the exact amount of computing resources needed at any given time. This greatly reduces the time it takes to make IT resources available and provides broad network access, rapid elasticity, and self-provisioning resource pooling. However, due to the open nature of the cloud environment, cloud security measures differ greatly from the traditional requirements that ISO/IEC 27001:2013 was originally designed to protect.
ISO/IEC 27017 builds upon ISO/IEC 27001, providing additional guidance on architecture, technology, and processes to address the specific needs of cloud security. In order to achieve ISO/IEC 27017, a company must have a systematic and continuously improving approach to managing and safeguarding data in the cloud. The accrediting body, IMSM, Inc., has vetted Sev1Tech’s implementation of cloud-centric security measures, such as controls for shared roles and responsibilities, segregation of critical virtual systems, and the alignment of security management for both virtual and physical networks.
“Sev1Tech has systems in place, not only to protect our data and our customers’ data, but also to help our customers understand how they are protected,” says Bob Lohfeld, CEO of Sev1Tech. “IMSM’s thorough audit has accurately assessed our Quality Management System’s (QMS) adherence to the highest quality standards possible.”
This addition to Sev1Tech’s existing ISO 9001:2015 Quality Management, ISO/IEC 20000-1:2011 IT Service Management and ISO/IEC 27001:2013 Information Security Management accreditations demonstrate Sev1Tech’s ongoing commitment to align information technology, information security, and cloud services and solutions with globally recognized best practices.
Sev1Tech provides IT modernization, cloud, cybersecurity, engineering, training and program support services to U.S. government agencies and major commercial organizations. Headquartered in the Washington D.C. metro area, Sev1Tech is a preferred and trusted contractor supporting critical missions across the defense, intelligence, homeland security, space and health markets. Sev1Tech delivers excellence through highly qualified people, CMMI SVC 3, ISO 9001, ISO 20000, ISO 27001 and ISO 27017 certified processes, and cutting-edge technology. To learn more, visit www.sev1tech.com.