#WeAreDevel
CERTIFICATIONS
ISO (Internacional Organization for Standardization)
Is the International Organization for Standardization, whose main activity is the development of international technical standards.
ISO standards help make the development, production and supply of goods and services more efficient, secure and transparent.
ISO 9001 is a globally recognized standard for quality management. It helps organizations of all sizes and sectors to improve their performance, meet customer expectations and demonstrate their commitment to quality.
Conformity with ISO/IEC 27001 means that an organization or business has put in place a system to manage risks related to the security of data owned or handled by the company, and that this system respects all the best practices and principles enshrined in this International Standard.
American Institute of Certified Public Accountants (AICPA)
SOC reports, published by the American Institute of Certified Public Accountants (AICPA), are internal control reports on the services provided by a company. These reports provide valuable information for users when evaluating and managing the risks associated with an outsourced service.
SOC 2 is shorthand for several things: a report that can be provided to third parties to demonstrate a strong control environment; an audit performed by a third-party auditor to provide said report; or the controls and “framework” of controls that allow an organization to attain a SOC 2 report. In other words, SOC 2 is a “report on controls at a service organization relevant to security, availability, processing integrity, confidentiality, or privacy,” according to the AICPA.
Payment Card Industry Data Security Standard (PCI DSS)
The Payment Card Industry Data Security Standard (PCI DSS) is an information security standard used to handle credit cards from major card brands. The standard is administered by the Payment Card Industry Security Standards Council, and its use is mandated by the card brands. It was created to better control cardholder data and reduce credit card fraud.
The Forum of Incident Response and Security Teams (FIRST) is a global forum of incident response and security teams. They aim to improve cooperation between security teams on handling major cybersecurity incidents. FIRST is an association of incident response teams with global coverage.