Huddle, a provider of cloud-based content management and collaboration technology aimed at government agencies and large enterprises, has been awarded certification to ISO 27001, an international standard for information security management.
ISO 27001 covers areas including risk management and security, as well as business continuity management and compliance.
“ISO 27001 certification is part of our obsession with providing enterprise-class service,” Huddle VP of Enterprise Simon O’Kane told CMSWire during an interview. “It’s an emerging global standard as a benchmark for security processes, especially for delivery of services over the Internet.”
O’Kane said the British Standards Institution (BSI) certified “everything” in the Huddle organization, including customer-facing services as well as back-end development. Huddle determined about six months ago it wanted to achieve ISO 72001 certification and achieved it in about three months. “It was paramount for us,” he said. “Security is in our DNA.”
To that end, Huddle has also obtained pan-government accreditation in the UK.
ISO Certification Signals Security is Under Control
According to Richard Edwards, principal analyst at Ovum, ISO 27001 certification sends a “clear signal that information security management is under control of management rather than an IT artifact.” Edwards said in a phone conversation with CMSWire that at many organizations, the IT department must shoulder the responsibility of maintaining IT security.
“That’s fine to a point, but IT security shouldn’t be an area exclusively handed off by senior management,” stated Edwards.
Edwards said that increasingly, major global players in the enterprise space such as Google Apps for Business, Microsoft Global Foundation Services and Yammer are obtaining ISO 27001 certification. In addition, many European companies, especially in the UK, and Japanese companies are seeking the certification. But US companies are lagging to their disadvantage.
“The US is slow to pick up ISO 27001, and the US will get blindsided,” said Edwards.
Huddle Cuddles Feds
Huddle has been busy recently obtaining certifications that prove its dedication to security. In September, Huddle obtained certification by the Federal Information Security Management Act for a new cloud service for U.S. government agencies to communicate across the web.
Already widely used by western European governments, the secure Huddle platform is currently being developed for the Department of Homeland Security Science and Technology Directorate (DHS S&T) and the National Geospatial-Intelligence Agency (NGA). This achievement for Huddle is down to a strategic partnership and technology development agreement with In‐Q-Tel (IQT), a non-profit, strategic investment firm that identifies solutions to support U.S. intelligence.