Announcement: Iron Mountain InSight® Achieves ISO 27001 Certification
December 24, 2019 at 02:31 pm
Share
Announcement: Iron Mountain InSight® Achieves ISO 27001 Certification
Independent evaluation demonstrates Iron Mountain's commitment to compliance and security for SaaS Artificial Intelligence (AI) and Machine Learning (ML) offerings to keep our customer information assets secure.
Iron Mountain InSight has achieved the ISO/IEC 27001:2013 certification, the international standard for information security management systems (ISMS). Established by the International Organization for Standardization (ISO), the ISO 27001 certification requires the assessment of an organization's information security management controls. Coalfire ISO, Inc., a third party assessment organization (3PAO) accredited through the ANSI-ASQ National Accreditation Board (ANAB), independently inspected the management system in place for InSight against 114 controls. Compliance with this standard demonstrates Iron Mountain's commitment to monitoring adherence to best practices through repeatable processes including data transmission, storage, access controls, logging, operations, cryptography, management of third parties, incident management and tracking of threats.
This step forIron Mountain InSight establishes common ISMS controls and procedures for running in a secure cloud hosted environment. This is a shared compliance framework with Google Cloud Platform (GCP) and Iron Mountain global security standards. The ISMS developed applies to the people, processes and IT systems encompassing the global infrastructure supported by Iron Mountain InSight running ML/AI capabilities on the GCP framework.
Iron Mountain InSight's ISO 27001 certification allows us to work with customers to meet their needs and expectations for security controls and information handling. The ISO 27001 certification establishes a leadership commitment to the ISMS by ensuring proper organizational awareness, communications, staffing and objectives for the InSight program. Going a step further, the certification provides a set of policies, which align with our customer security commitments to comply with relevant laws and regulations.
Attachments
Original document
Permalink
Disclaimer
Iron Mountain Inc. published this content on 24 December 2019 and is solely responsible for the information contained therein. Distributed by Public, unedited and unaltered, on 24 December 2019 14:30:04 UTC
Iron Mountain Inc is engaged in a physical ecosystem supporting information storage and retrieval for businesses which rely on paper documents or computer tapes to store their valuable information. The Companyâs segments include Global Records and Information Management (Global RIM) Business and Global Data Center Business. The Global RIM Business segment includes various offerings, including records management, data management, global digital solutions, secure shredding, secure shredding, and consumer storage. The Global Data Center Business segment provides data center facilities and the capacity to protect mission-critical assets and ensure the continued operation of its customersâ information technology (IT) infrastructure with data center options. The Company also offers IT asset disposition customer solutions. It serves industries, such as commercial, legal, financial, healthcare, insurance, life sciences, energy, business services, entertainment and government organizations.