ISO 27001:2013 #
SSAE SOC I and SOC II Type 2
Specifies the requirements for establishing, implementing, maintaining and continually improving an information security management system within the context of the organization.
Mentions internal controls capturing how a company safeguards customer data and how well those controls are operating.
# Details related to encapsulated report shall be provided by Certinal
PRP certification represents the requirements you must meet in order to be recognized as a qualified processor by data controllers.
VAPT is a term used to describe security testing that is designed to identify and help address cyber security vulnerabilities.
Information Security Registered Assessors Program (IRAP) Certification
Comprehensive process for the independent assessment of a system’s security against Australian government policies and guidelines.
ISO 9594-8
Specifies data objects used to represent the public-key certificates themselves, & revocation notices for issued public-key certificates that should no longer be trusted.
FIPS 140-2
US and Canadian government standard that specifies the security requirements for cryptographic modules that protect sensitive information.
FIPS 186-4
The Standard specifies a suite of algorithms that can be used to generate a digital signature.
ISO 27001:2013 #
Specifies the requirements for establishing, implementing, maintaining and continually improving an information security management system within the context of the organization.
# Details related to encapsulated report shall be provided by Certinal
Trust Arc Asia-Pacific Economic Cooperation (APEC) Privacy Recognition for Processor (PRP) System Certification
3rd Party VAPT
VAPT is a term used to describe security testing that is designed to identify and help address cyber security vulnerabilities.
Information Security Registered Assessors Program (IRAP) Certification
Comprehensive process for the independent assessment of a system’s security against Australian government policies and guidelines.
ISO 9594-8
Specifies data objects used to represent the public-key certificates themselves, & revocation notices for issued public-key certificates that should no longer be trusted.
FIPS 140-2
US and Canadian government standard that specifies the security requirements for cryptographic modules that protect sensitive information.
FIPS 186-4
The Standard specifies a suite of algorithms that can be used to generate a digital signature.
