Security: A Core Tenet
Security is one of the core pillars of Ferroque Systems’ operations and services. Since our inception, the implementation of security controls, data and systems handling policies, and a myriad of security tools and hardware has been front and centre for both the welfare of our organization and of our customers.
Over the past several years, we have continued to invest in our Governance, Risk, and Compliance (GRC) and security programs and are pleased to announce our Managed Services are SOC2 Type II compliant.
SOC 2 Compliance & Certification
Established service organizations consistently engage in comprehensive audits of their corporate governance, security measures, and associated controls. These evaluations, conducted over a sustained period, are designed to authenticate their efficacy. The objective is to substantiate that the provider not only has established but also persistently upholds, appropriate security protocols and benchmarks as delineated by the American Institute of Certified Public Accountants (AICPA). These external assessments and the resultant documentation are executed following AICPA’s SSAE18 by a certified CPA. It’s pertinent to note that SOC 2 reports are available in two distinct types:
- Type I: Describes the organization’s system and outlines the service provider’s controls, processes, policies, and procedures on five criteria areas: security, availability, processing integrity, confidentiality, and privacy. The report also requires point-in-time audit evidence for the related in-scope controls that align with our operations and services.
- Type II: Includes the Type I report and builds on the report by auditing the controls over a 3-12 month period of operation. Its intent is not merely to confirm the existence of the controls, but to provide evidence that the controls are operating and are being adhered to daily.
Confidence. Maturity. Trust.
Assurances of system security without tangible verification offer minimal reassurance to the discerning client. At Ferroque Systems, our commitment to operational excellence is evidenced by our ongoing investment in SOC2 compliance, validated by certified auditors. This rigorous approach underscores our dedication not only to maintaining a robust security posture but also to showcasing our operational proficiency. It affirms that our service delivery and organizational management are in strict alignment with industry-leading best practices, ensuring peace of mind for our valued clients.
To Your Security,
The Ferroque Systems Team
-
Ferroque Systems
Ferroque Systems is a technology consulting, IT advisory, and managed services firm specialized in virtualization and digital workspaces. Recognized internationally for our Citrix expertise, we focus on delivering innovative solutions to meet the needs and strategic goals of growing enterprise and mid-market businesses across the globe.