SUSE Obtains Two Certifications from NQA Endorsing Our Compliance with the ISO Standards

Today’s security landscape is ripe with new threats, breaches and attacks making it critically important for businesses to meet the highest industry standards. At SUSE, we are committed to providing a secure framework that our customers, partners and the community know they can rely on and trust.

I’m pleased to share that we obtained two certifications from NQA, the leading independent provider of environmental simulation testing, inspection and certification services, certifying our compliance with the ISO standards, including ISO27701 and ISO27001. SUSE has implemented and achieved certification of its Information Security Management System (ISMS) and the Privacy Information Management System (PIMS) to the respective standards, attesting to our commitment of secure innovation, with a focus on privacy, rights and freedoms of individuals.

Not only are we meeting the best practice industry standards with reliability and repeatability for our data and privacy but we have implemented new processes around IT assets that our IT team has worked hard to integrate, which starts with privacy by design. Design with operating and privacy in mind. Privacy and data protection are core components when developing software and should be a primary focus in any planning stage. By leading with a privacy by design strategy, you ensure that you are protecting your customers and future-proofing your business.

The way you run your technical processes and business supports a quality standard and while other companies have only been partially certified, the ISO27001 and ISO27701 certifications SUSE received span across everything within SUSE and our entities, including all countries we operate in, subsidiaries and all processes.

Certifications and security standards are important as they provide a framework for your business along with the organizational rigor that is needed to responsibly manage customer data. Given the heightened state in the security landscape, as a business, it is our responsibility to ensure that our customers know how seriously we take security.

I’m incredibly proud of our team and the contributions that everyone made to make this possible. Obtaining these certifications is not a point-in-time certification but a testimony to our commitment to the continuous improvement, as security is not a state, but a never-ending process. Furthermore, the fact that we can proudly say these certifications span our entire business is incredibly invaluable for our business and demonstrates to our customers just how committed we are to ensuring robust and resilient practices.