Google Apps for Business cloud users are now enjoying increased security since the suite earned ISO 27001 certification. When Google announced its new security certification on May 28, it set the technology and the business worlds abuzz.
This new security certification is part of an Information Security Management System and is a big step forward for the Google cloud network. One of the most internationally accepted independent security standards, ISO 27001 certification is difficult to earn and is a well-respected standard.
To earn this certification, Google had to meet certain ISO standards such as having risk treatment methods in place, a working management system, and appropriate information security controls. Ernst & Young CertifyPoint conducted a three-step audit in order to make sure that Google met these standards. During the audit, the body also made special note of any impacts, vulnerabilities, or threats. The audit process included an informal review, a formal audit that was much deeper in scope, and multiple follow-up examinations.
While successfully passing the audit was great news for Google, the certification was significant for businesses and for techies alike. While people have always associated the cloud with positives like universal access, people often view security in the cloud as a negative. Although Google has always worked to make its cloud suites secure, large businesses, especially, held onto their doubts about security in the cloud. However, the new ISO 27001 certification should help eliminate these doubts and make businesses more comfortable with a Google Apps migration. Ultimately, this new certification should prove to businesses that they can’t make as large an investment as can Google in areas like security. Equally as important, this new certification will work to improve the overall image that people have of information security in the cloud.
Although the new ISO 27001 certification is big news from Google, it isn’t the only example of Google’s dedication to security in the cloud. Google Apps for Government, another cloud suite, is verified in SSAE 16 / ISAE 3402 audits and has FISMA certification. Put together, the security backing for these two cloud platforms should prove that Google has a strong dedication to security in the cloud. Eran Feigenbaum, Director of Cloud Security for Google Enterprise, says that Google will continue to highlight this dedication by having its cloud platforms continue to undergo third-party audits.
Not only is Google’s new security certification important because it can provide businesses with the peace of mind they need to store their data in the Google cloud network, but it’s also significant because it will help better the reputation of cloud security.
Cloud Sherpas is a leading cloud service provider and was named the “Google Enterprise 2011 Partner of the Year.” As one of the first Google Enterprise partners, Cloud Sherpas has migrated over one million users across a variety of industries from legacy, on-premise messaging systems to Google Apps, helping organizations adopt cloud computing to innovate and dramatically reduce their IT expenses. A Google Apps Reseller in Atlanta, GA, Cloud Sherpas has regional offices in locations including San Francisco, New York, Chicago, Austin and Sydney, and has more Google Apps Certified Deployment Specialists than any other partner in the world.