First Cloud-Native Data Analytics Vendor to Secure ISO Certification; Provides Customers with the Highest Level of Compliance Certifications to Secure Data in the Cloud
REDWOOD CITY, Calif. – Dec. 10, 2015 – Sumo Logic, a leading cloud-native data analytics service, today announced that it has obtained ISO 27001 certification of its machine data analytics platform. This certification establishes Sumo Logic as the only data analytics provider to have been awarded this certification, and has also been independently validated under other key security compliance certifications including PCI DSS, HIPAA-HITECH, and SOC 2 Type 2.
“The security and integrity of our customers’ data is our top priority,” said Joan Pepin, VP of security and CISO for Sumo Logic. “This certification is a huge milestone for any company, but is further proof that Sumo Logic is really setting the bar to maintain security and data protection in the cloud. Our industry-leading platform meets the most rigorous privacy and compliance standards enabling us to provide our customers with the ability to operate and innovate with confidence and security in the cloud.”
ISO 27001 is a globally recognized standard for the establishment and certification of an information security management system (ISMS). The standard specifies the requirements for establishing, implementing, operating, monitoring, reviewing, maintaining and improving a documented ISMS within the context of the organization’s overall business risks. It sets forth a risk-based approach that focuses on adequate and proportionate security controls that protect information assets and give confidence to interested parties.
“Like any organization, security is one of our primary concerns, especially since Ibotta’s users have earned nearly $50 million on our platform,” said Luke Swanson, CTO for Ibotta. “One of the primary reasons we selected Sumo Logic is that it enables us to not only automate compliance and security monitoring across our entire stack, but the service itself meets all the major privacy and compliance standards to ensure the security and privacy of our data, giving us tremendous trust and confidence in the service.”
Sumo Logic has a rigorous security model with an end-to-end process, which includes best-of-breed technologies and stringent operational processes to ensure that customer data is completely safe at all times. In addition to compliance and certifications, the Sumo Logic platform includes core strategic security technologies including whole-disk encryption, access controls, whitelisting, regular penetration testing, vulnerability scans and strong Secure Development Lifecycle (SDLC).
The ISO 27001 certification was performed by BrightLine, a leading provider of attestation and compliance services. Details of our ISMS certification are publicly available here.
Additional Resources
- Read about Sumo Logic’s security model
- Learn more about Sumo Logic’s Assurance Programs
- Sign up for a free trial of Sumo Logic
- Read the Blog: http://www.sumologic.com/blog/
- Follow Sumo Logic on Twitter: https://twitter.com/sumologic
- Check us out on LinkedIn: https://www.linkedin.com/company/sumo-logic
