At Cloudeon we regularly do certifications with auditing and we make sure our employees get the required training and accreditations. We are serious about what we do, and our certifications are one way of documenting our trustworthiness and our commitment to providing solid advice.
There are various levels of Microsoft partnerships, spanning from normal to silver and gold partner. The various partnerships are allotted based on the competences in various technology fields backed up with ongoing documentation of accomplishments.
Cloudeon’s Microsoft Gold partner in numerous categories.
This international security standard is divided in two: Type 1 and type 2. A type 1 certification describes the processes and the service organization with a focus on the company’s own ambitions and a set of requirements related to the 3402 declaration. Type 1 is only descriptive whereas Type 2 is an independent auditing that controls whether you as a company live up to the framework described in your Type 1 declaration.
Cloudeon has achieved an ISAE 3402 Type 2 certification.
As early as 2017 CLOUDEON started the process to be revised in relation to our security and controls as an IT service provider.
“The standard sets the framework for how the service provider’s auditor must perform his work and make statements, including how the auditor achieves a high degree of certainty in relation to the supplier’s description of his system being true, that the vendor’s controls are appropriately designed and that the controls have been effective. There must be consistency between the audit’s audited by the auditor and the purpose of the controls (control objectives), including the risks that the controls seek to address”.
Source: Ministry of Education
This has in March 2019 resulted in CLOUDEON achieving an ISAE 3402 type 2 and thus having the audit’s word that we as a service provider have full control of both the security and internal controls.
Many companies – especially in public procurement – require that a ISAE 3402 type 2 declaration is a must to be considered as a supplier for their organization.