As the first and only CASB to achieve certification, Skyhigh addresses customer demand for advanced data protection
LONDON – 13 April 2016 – Skyhigh Networks, the leading Cloud Access Security Broker (CASB), today announced its certification to the ISO 27018 standard by BSI Group, a respected third-party organisation. ISO 27018 is the first standard to outline globally accepted guidelines for protecting Personally Identifiable Information (PII) stored in the cloud. Since the publication of ISO 27018 in 2014, only a handful of leading cloud service providers have achieved certification including Microsoft, Amazon, Box, and Skyhigh Networks. Adherence to the standard requires a high-level of sophistication in the handling of PII and a significant commitment of time and resources to the rigorous process.
As the first and only CASB to be certified on the ISO 27018 standard, Skyhigh continues to deliver unparalleled solutions to address growing cloud security challenges for enterprises worldwide. With this validation, Skyhigh customers have even greater confidence over how their data is managed in the cloud. “Personal privacy of our employees, collaborators and patients is our primary concern,” said Jeff Haskill, chief information security officer for AstraZeneca. “We believe that the ISO 27018 standard is an important differentiator when comparing differing cloud service providers, so it–s great news that Skyhigh is certified.”
“ISO 27018 is an important standard giving enterprises confidence that cloud providers are a safe place for personal information,” said Carla Arend, Research Director Cloud Practice at IDC. “According to IDC’s cloud research, security and compliance concerns remain top of mind for European organisations looking to use cloud services and IDC suggests that every organisation should be looking carefully at the security and privacy standards that their suppliers conform to.”
ISO 27018 assures customers that sensitive data will be protected in several distinct ways:
• Control: Customers control how their data is used by the cloud provider
• Transparency: Disclosure of policies relating to third party access, data residency and the return, transfer, and deletion of PII
• Investigation: The prompt and thorough examination of any breach that may have led to the loss of sensitive customer information
• Communication: Notification of all security incidents and law enforcement requests
• Compliance: Yearly third party audits of the on-going conformance to standard guidelines
By adopting the ISO 27018 standard, Skyhigh provides customers with the confidence that it treats data protection as a top priority. With data breaches and cyber-attacks becoming increasingly common and damaging, global enterprises fear the fall-out that may irreversibly impact brand names and bottom lines. ISO 27018 helps to alleviate these fears and accelerate cloud adoption. Additionally, the standard helps customers further conform to global laws and compliance requirements.
“We have a history of adopting global standards that matter to enterprises in every vertical and the ISO 27018 certification is just the latest example of us placing customer needs first,” said Balaji Thiagarajan, senior vice-president of Engineering and Operations at Skyhigh Networks. “As the market leading CASB, Skyhigh enables organisations to embrace cloud services with unparalleled visibility, compliance, data security, and threat protection.”
Skyhigh has also been certified for ISO 27001, FIPS 140-2 and TRUSTe. For more information, please visit the Compliance Center on the Skyhigh website.
You must be logged in to post a comment Login