At ThousandEyes, we prioritize our customers' and partners' security and privacy. To demonstrate this, we undergo third-party validation of our information security practices. We are pleased to announce that we have reached significant compliance milestones toward achieving this objective by adding or re-completing the following certifications:
- ISO 27017: Our newest addition, this standard that provides additional guidance and implementation advice on information security aspects specific to cloud computing.
- ISO 27001: This widely recognized and internationally accepted information security standard is completed annually and specifies security management best practices and comprehensive security controls following ISO 27002 best practices guidance.
- ISO 27018: Another standard that ThousandEyes must complete annually, it establishes commonly accepted control objectives, controls, and guidelines for implementing measures to protect Personally Identifiable Information (PII) in accordance with defined privacy principles for public cloud computing environments.
With the addition of the ISO/IEC 27017 certification, ThousandEyes joins a select number of organizations that go beyond the requirements of ISO/IEC 27001 to ensure its cloud security practices are best-of-breed. ISO/IEC 27017 also expands on the ISO/IEC 27000 series of standards, providing guidelines for information security controls applicable and specific to the secure provisioning and use of cloud services.
Following this multi-audit certification process, the British Standards Institute (BSI), an accredited certifying body of ISO/IEC 27000 standards, and Schelmman CPA audit firm, determined that ThousandEyes’ ISMS (Information Security Management System) conforms to the requirements for ISO/IEC 27017:2015 certification.