Securing Trust: SUSE’s Commitment to Cybersecurity and Data Privacy

By Jochen Jaser, CIO, and Karthik Prabakaran, VP IT Security, SUSE 

At SUSE, we believe security isn’t just a feature; it’s a fundamental promise to our customers, partners and team members. It’s a promise we continuously work to uphold. That’s why we’re pleased to announce two key developments that reinforce our commitment to building secure and trustworthy solutions.

Transitioning to a new certification partner

First, we have transitioned our ISO/IEC 27001 and ISO/IEC 27701 certifications to LRQA, a globally recognized certification body known for its rigorous and independent audits. This transition ensures that our internal processes are held to the highest international benchmarks, externally verified to meet globally recognized criteria. You can trust that when we say “secure,” we meet these rigorous standards.

Staying ahead with modern standards

Second, we’ve upgraded our information security standards to the latest version, ISO/IEC 27001:2022. This is a significant step forward as the 2022 version more fully reflects modern security challenges, including those presented by cloud computing, hybrid workforces, and evolving privacy expectations. By adopting this standard, we’re not just keeping up with the industry; we’re staying ahead of emerging threats to better protect our customers’ data and our own.

For our customers, these certifications signify a stronger assurance of our security practices. The ISO/IEC 27001 certification confirms that we have robust controls in place to manage information security risks. The ISO/IEC 27701 certification adds a critical layer of privacy management, confirming that we embed privacy by design into our processes – it’s never an afterthought.

Our commitment to continuous improvement

Ultimately, these certifications aren’t a finish line. They are the foundation upon which SUSE will continue to build safer, more reliable, and more trustworthy software solutions and services. They demonstrate our commitment to continuous improvement, ensuring that as standards update and risk profiles shift, we respond proactively.

We would like to thank all of the SUSE teams who work tirelessly to maintain the security and privacy promise we demonstrate through these certifications.

We invite you to learn more about what these standards cover and how we are implementing specific controls by visiting our certifications page: https://www.suse.com/support/security/certifications/