Mozy is the latest company to get certified in SOC 1 SAE 16 Type II, and it has also earned ISO 27001 certification. According to the company, achieving these certifications has been a priority.
Another cloud services provider is seeing the importance of achieving an SOC 1 SSAE 6 Type II audit as a way of differentiating its business. Mozy by EMC recently completed the audit. The company also achieved the ISO 27001 certification.
According to Mozy, successfully completing both examinations has been a priority. The company noted in a blog post: "Mozy is one of the only cloud data protection service providers to undertake these rigorous independent security assessments. This sort of compliance exercise is completely voluntary and not something to be entered into lightly—we see it as a badge of honor and an external validation of our commitment to you, our valued customer."
Although announcements of SSAE 16 and ISO 27001 aren't exactly common in the cloud world, there does seem to be a growing trend in companies undergoing such audits in an attempt to differentiate themselves. Certifications also go a long way toward proving to potential—and existing—customers what policies and practices are in place to properly manage and secure data.
For instance, OneNeck IT Solutions announced last month it had completed SOC 1 Type 2 audits.
Mozy is positioning its new certifications as a way of proving its cloud services are enterprise-ready. According to the company, attracting enterprise customers to cloud services isn't about providing the right pricing models, the right sales team or sporting an enterprise mentality, but in having enterprise credentials.
Such certifications may not be necessary to do business in the enterprise cloud space, but enterprises do tend to be keenly aware of what they mean. And those with SSAE and ISO certifications could find they have a competitive advantage over those that don't.