Connectria's SAS 70 Type II examination, which audited the operating effectiveness of our hosting controls over a period of time, was completed on February 1, 2008. Connectria received notice of its SAS 70 Type II compliance originally on April 29, 2008, and Connectria continues to take steps to maintain its SAS 70 Certification.
An Appropriate SAS 70 Certification For A Hosting Provider
Connectria’s SAS 70 Certification was focused on the security of our hosting environment and the effectiveness of our support processes, utilizing the ISO/IEC 27002:2005 framework for internal IT controls. These controls establish guidelines and general principles for initiating, implementing, maintaining, and improving information security management in an organization including:
- Security Policy
- Organization of information security
- Asset management
- Human resources security
- Physical and environmental security
- Communications and operations management
- Access control
- Information systems acquisition, development and maintenance
- Information security incident management
- Business continuity management
- Compliance
| |
Not All SAS 70 Certifications Are Alike
If you review the SAS 70 Certifications of many other hosting providers that claim to be SAS 70 Certified, you will find that they certified their Sales Order Processes, or their Billing Processes, or other processes that are mostly unrelated to their actual hosting services or hosting infrastructure. You see, in the SAS 70 Certification process, it is up to each company to determine what processes they want to audit and review.
Because of Connectria’s core values of honesty and integrity – and our extensive experience hosting complex environments in banking, financial services, healthcare – we chose to utilize the appropriate standards when documenting the effectiveness of our hosting.
Please complete the form below if you would like a quote or if you have a question.
Or Call us at 1-800-781-7820 (1-314-587-7000 Outside the US)
