Leading encryption services provider Egress Software Technologies secures ISO 27001:2013 certification

| 15th Jun 2014

London – July 2014 – In recognition of their commitment to global standards for security best practice, Egress Software Technologies, the leading provider of UK government certified encryption services, today announces that is has become one of the first organisations, in its industry, to achieve the ISO 27001:2013 standard.

Published in September 2013, the latest ISO 27001:2013 standard is the recognised international benchmark for information security management, outlining how to implement and uphold an independently assessed and certified information security management system (ISMS). Having undergone an extensive two-stage audit process of internal procedures, organisations that achieve ISO 27001:2013 demonstrate to customers, suppliers and stakeholders their commitment and compliance to global best practice for information security. 

By obtaining the ISO 27001:2013 certification, Egress has further strengthened its commitment to providing customers with the necessary levels of assurance regarding the way their information is managed and secured. Egress information security management system includes policies around access control, incident management, business continuity, physical security, human resources and technical procedures.

Commenting on the announcement, Egress CEO Tony Pepper states: “Today’s confirmation that we have formally secured ISO 27001:2013 certification demonstrates our on-going commitment to providing robust, industry leading data security services to the market. By benchmarking our policies and procedures against this independent, internationally recognised Information Security Management System Standard, our customers and partners can be assured of the resilience and excellence of our service.” 

Suzanne Fribbins, Risk Management Specialist at BSI said: “Egress has shown it is serious about securing its valuable information assets by putting in place appropriate policies, procedures and controls to assess and treat risks to information security throughout the organisation.

“Achieving certification to ISO 27001 is a credit to everyone at Egress and a clear demonstration of the company’s commitment to providing the best possible service to its customers. This is testament to the hard work and dedication that has gone into taking a well-thought-out approach to keeping information security risks under control, providing reassurance and confidence to customers that their information is well-managed and secure.” 

“The commitment, desire and focus Egress Software Technologies has shown to its Information Security responsibilities has been exemplified in their journey to ISO 27001:2013 certification,” explains Director of NMG Consulting Nish Gopal. “Of the many clients NMG Consulting has represented, never have I seen a client put so much effort in to ensure a successful certification. This ISO 27001:2013 certification has allowed Egress to demonstrate the importance it puts on managing the diverse risks posed by the ever evolving information security landscape.”

Pepper concludes: “At Egress, our success has been built on the continued investment in our technology platform and service offering. In October 2013, this approach saw Egress Switch become the only CESG CPA Foundation Grade certified email encryption product and we see today’s announcement about our ISO 27001:2013 certification as another part of this evolution.” 

About Egress

As advanced persistent threats continue to evolve, we recognize that people are the biggest risk to organizations’ security and are most vulnerable when using email.

Egress, a KnowBe4 company, is the only cloud email security provider to continuously assess human risk and dynamically adapt policy controls, preparing customers to defend against advanced phishing attacks and outbound data breaches before they happen. Leveraging contextual machine learning and neural networks, with seamless integration using cloud-native API architecture, Egress provides enhanced email protection, deep visibility into human risk, and instant time to value.