Security and Certifications

Security and Certifications

Data integrity and security are of the utmost importance to ID and are the cornerstones of every client engagement. We’ve secured the highest and most coveted certifications and authorizations so you can sleep sound at night. Innovative Driven’s goal is to give you confidence.

  • Security is your top concern and it is our number one priority. Security is our middle name! We’ve invested the time and effort to become a FedRAMP authorized provider because we understand that securing your fortress is of utmost importance. Leveraging the power and flexibility of a secure and streamlined private cloud infrastructure, ID provides U.S. government agencies with vetted, reliable, and scalable technology services.

  • Keeping your data protected is your priority – and it’s ours, too. We are one of the only information lifecycle companies to be ISO 9001, 27001, 27017, and 27701 certified. We are also StateRAMP authorized as of summer 2022, and we’ve been FedRAMP-authorized at the moderate level since July 2018 and remain authorized after the successful completion of annual 3PAO audits.

    • ISO 9001 certification is a globally recognized standard that demonstrates an organization’s commitment to quality management. To become ISO 9001 certified, ID met specific requirements outlined in the ISO 9001 standard, which is a set of guidelines and best practices for implementing a quality management system (QMS).
    • The ISO 9001 standard emphasizes a customer-centric approach to quality management, and requires organizations to demonstrate their ability to consistently meet customer needs and expectations, as well as comply with relevant legal and regulatory requirements. To achieve certification, ID underwent a rigorous audit process by an accredited third-party certification body that verifies the organization’s compliance with the ISO 9001 standard. The benefits include increased operational efficiency, enhanced product and service quality, and better risk management.
    • ISO 27001 certification is a globally recognized standard for information security management systems (ISMS). To become ISO 27001 certified, ID demonstrated our ability to effectively manage and protect sensitive information, including personal data, financial information, and intellectual property.
    • The ISO 27001 standard provides a framework for implementing an ISMS and ensures that an organization has the necessary controls and processes in place to manage information security risks. The standard requires ID to identify and assess potential risks, implement appropriate controls to mitigate those risks, and continually monitor and improve the effectiveness of their ISMS. The benefits include increased trust and confidence, improved regulatory compliance, enhanced risk management, and greater resilience to cyber threats.

We approach protecting data with a defense in depth methodology, so you can sleep soundly

  • Power

    Innovative Driven uses one of Iron Mountain’s data centers that offers 36 megawatts of capacity and 99.999% uptime. The infrastructure management system has been recognized as one of the industry’s leading systems assuring effective capacity management and energy efficiency throughout the facility.

  • Network

    Multiple Tier 1 carrier options serve our facility with diverse, redundant fiber entrances to the data center.

  • Compliance
    • ITAR – International Traffic in Arms Regulations (ITAR) is a set of regulations administered by the State Department to control the export and import of defense and military related technologies on the United States Munitions List (USML)
    • GDPR – ID uses a dedicated environment for EU data that is regulated by GDPR to protect data and privacy for the EU and the European Economic Area
    • HIPPA – Our data centers and systems are compliant with the Health Insurance Portability and Accountability Act of 1996 which protects sensitive patient health information
  • Secure Data Centers

    SSAE-18 Certified Secure Data Centers.

  • Critical Systems and Access

    Full redundancy for all critical systems and access.

  • Security & Support

    ID provides our clients with Tier 2 application support 24/7/365.

  • Global Security Center

    Our Data Centers provide 24/7/365 continuous monitoring and physical security on-premise. Facility access controls include key cards, bio-metric scanners, access logging, screening by physical security guards and is thoroughly monitored via CCTV cameras.

  • Certified Experts

    IDs security and support teams are staffed experts that have industry recognized certificates:

    • CISSP
    • CISSP-ISSEP
    • CISM
    • CISA
    • CEH
    • SABSA SCF
    • ISO 27001 Lead Auditor

     

  • ISO
    • ISO 27001:2013 – ISMS
    • ISO 27701:2019 – Privacy
    • ISO 27017:2015 – Cloud (AWS/Azure)
    • ISO 9001:2015 – Quality Management

Certifications, Authorizations and Compliances: