As of May 28, Google’s cloud security reached a new high when Google Apps for Business earned ISO 27001 security certification. Although the news of the certification caused a lot of hype in both the business and the technology worlds, not many people are aware of just how important this security certification is for Google.
Having its business cloud platform verified in ISO 27001 certification is extremely important for Google because the standard is among the most internationally accepted independent security standards and was anything but simple to earn.
As part of an Information Security Management System, ISO 27001 certification can only be earned through a third-party audit. Ernst & Young CertifyPoint conducted the audit for Google, looking to make sure its business suite met specific ISO standards. These standards include a working management system that can address current and future security concerns, information security controls, and risk treatment methods. Additionally, during the audit Ernst & Young CertifyPoint made a special note of vulnerabilities, impacts, and threats in the Google cloud.
So what did the audit entail? The rigorous process included three different steps, starting with an informal review. After the informal review came an in-depth audit as well as many follow-up audits that served to guarantee Google’s practices were continuing.
This new security certification is such a big deal for Google – as well as for cloud computing techies and for businesses – because it is a major step toward improving the image of cloud security. Since Google first entered the world of cloud computing in 2006, people have associated its platforms with reliability and mobility. While Google has always taken security seriously, over the years people, especially large businesses, have voiced their concerns about cloud security. However, Google Apps for Business’ ISO 27001 certification should make these concerns all but disappear, and should prove to individual businesses that Google can make larger investments in areas like security than they can individually. Now that Google Apps for Business is backed by one of the most internationally accepted security standards, many more businesses will likely undergo a Google Apps migration.
To further the new, improved image of cloud security, Director of Security for Google Enterprise Eran Feigenbaum has announced that Google will continue to open up its cloud suites for third-party audits. These audits will prove that Google is committed to the highest security for its cloud network and will help it to achieve new, higher security standards.
Knowing that your information is safe is essential for everyone, and knowing that you can store your information in a cloud network that’s mobile, reliable, and secure is an ideal situation for businesses of all kinds.
Sharon Shapiro blogs for Cloud Sherpas, a leading cloud service provider named the “Google Enterprise 2011 Partner of the Year.” As one of the first Google Enterprise partners, Cloud Sherpas has migrated over one million users across a variety of industries from legacy, on-premise messaging systems to Google Apps, helping organizations adopt cloud computing to innovate and dramatically reduce their IT expenses. A Google Apps Reseller in Atlanta, GA, Cloud Sherpas has regional offices in locations including San Francisco, New York, Chicago, Austin and Sydney, and has more Google Apps Certified Deployment Specialists than any other partner in the world.
