Home » Software » Successful audits of ISAE 3402 and ISAE 3000

Successful audits of ISAE 3402 and ISAE 3000

The DIAMOS data processing centre has been re-certified to current ISAE-3402 type 2 standards by a renowned auditor. Directly following on from this, an ISAE 3000 audit of the order data processing took place in accordance with the German Data Protection Act (?11 BDSG). Both certifications, which have to be renewed annually, were attained successfully and without objections.

Content of the ISAE 3402-certification is the confirmation of an existing internal control system and its effectiveness. It was thus documented that all current regulatory and procedural requirements for financial applications in DIAMOS\-\- Managed Services are compliant. The basis for this excellent result is the ongoing development by DIAMOS in the face of constantly changing requirements regarding compliance and security that need to be taken into consideration in the operation of Managed Services. In addition to the specifications and recommendations set by the German Federal Office for Information Technology Security (BSI) and international standards, DIAMOS maintains close contact with customers and industry-specific auditing firms.

\”Our Managed Services, offer our customers the opportunity to process their system operations through the DIAMOS data centre in a highly available, secure, as well as time-saving and cost-effective manner. Another positive impact has been the expansion of our data centre to include additional capacities, as well as the extension of our product portfolio from SaaS to IaaS and PaaS. When other data centres become redundant, naturally, the \-\-K-Fall\-\- (K-case) security is also included in our service package, so that the DIAMOS data processing centre satisfies the specific high requirements of the financial sector\”, emphasises Stefan Markwitz, Managing Director at DIAMOS AG.

A regular review of existing internal control systems relating to data security with respect to order data processing was also carried out and resulted in no objections. The established processes and controls comply with the defined specifications. As such, the existing technical and organisational measures for compliance with paragraph 11 of the German Federal Data Protection Act (? 11 BDSG) are valid and effective.

Posted by on 4. September 2018. Filed under Software. You can follow any responses to this entry through the RSS 2.0. You can leave a response or trackback to this entry

Leave a Reply


© 2019 So-Co-IT. All Rights Reserved. Log in - Copyright by LayerMedia

Blogverzeichnis - Blog Verzeichnis bloggerei.de Blog Top Liste - by TopBlogs.de Bloggeramt.de