Key tips for certification compliance

Key tips for certification compliance

A lot of companies are getting certified to show they comply to an ISO standard or work according to best practices. Of course, Datacenter.com obtained certain certifications to show we work according a couple of best practices. Due to the experience of our staff with auditing and working according industry best practices we did not experience a lot difficulties during the audits. One of the main reasons is, we got certified because we want to show our procedures meet industry best practices, the main reason wasn’t getting the paper. To experience an efficient and effective audit, these are our 5 key takeaways.

1 Choose the standards you trust

Do not certify for standards that you do not embrace. Choose the standards you want to certify in due to their purpose. If you choose a certification you think is ridiculous, complying to the certification standards and requirements will be really difficult.

2 Design for your key processes, not the certification processes

Do not design fancy processes in accordance with standards and afterwards adding your key services to that process. Design your ideal, most effective and efficient, business process and twist that process to comply with certification standards/requirements.

3 Cross check on requirements

Although you are sure you added all the requirements to your processes, perform a cross check. Make a reference scheme of all certification requirements and make a reference to the process/document where you describe how the requirement is implemented. For documentation it is easy to use compliancy software (also available as open source).

4 Prepare the evidence

Besides the description of how the requirements are implemented, for certification the auditor wants to see the requirements are not only designed to be part of the organizational processes, they want to see the requirements really are implemented and used. E.g. signed documents, digital logging or physical implementation can show requirements are really implemented. In advance of the audit, try to collect as much as evidence as possible.

5 Don’t beat the auditor, join them

Since you trust the standards you want to certify for, you understand the needs for complying for your organization. Team with the auditor to help improve your processes and explain your key processes. The auditor is not the enemy that is searching for mistakes. Teaming with the auditor helps you in mitigating risks and can improve your business processes.

By Jouke Albeda, Security & Compliance Manager Datacenter.com

More Insights

  • Understanding all your colocation costs – it is not just price per kW

    Finding the right data center can be one of the best investments your organization will ever make. It Is important to take the time to make the right choice for your business’ unique needs and the returns will have immediate effect. When you are exploring colocation costs, the numbers seem to be straightforward: costs per cabinet, costs per square meter, costs per kW, costs per kWh, etcetera. And yet there is no specification of what is, and what is not, included in those prices.

    Read more
    Read more
    Blog
  • Key advantages of a SOC / ISAE 3402 report

    Assurance reports are gaining popularity. Companies advertise having certifications and can provision assurance reports. Lots of certifications are shown by various data centers but why is it important? In this blog we will provide you the top 4 advantages.

    Read more
    Read more
    Blog
  • Datacenter.com Successfully Achieves Compliance of ISAE 3402 Type II

    Datacenter.com today announced that it obtained the prestigious ISAE 3402 Type II certification for its data center operation in Amsterdam. The report was completed by Noordbeek the respected IT audit company founded by Prof. dr. ir. Ronald Paans RE, professor of Postgraduate IT Audit degree at the VU University Amsterdam.

    Read more
    Read more
    news

Call us on +31 (0)20 - 2384 200
We are happy to answer your question

Email us for more information

Join Our Monthly Newsletter

Stay updated with all latest updates, upcoming events & much more
Subscribe
SUBSCRIBE NOW
close-link

Join Our Monthly Newsletter

Stay updated with all latest updates, upcoming events & much more
Subscribe
SUBSCRIBE NOW
close-link