Crypto.com has announced today that it has officially received an ISO / IEC 27001:2013 certification after rigorous third-party security audits. Crypto.com is one of the first cryptocurrency companies in the world, and the first cryptocurrency wallet application, to achieve this certification.
.@cryptocom is one of the first cryptocurrency companies in the world to achieve ISO/IEC 27001:2013 certification, the “Gold Standard” certification for information security management. Find out more: https://t.co/1mNxB2EvqY #cryptocurrency #cybersecurity pic.twitter.com/H3xISimG77
— Crypto.com (@cryptocom) May 10, 2019
ISO/IEC 27001
The ISO/IEC 27001 specifies requirements for establishing, implementing, maintaining, and continually improving an information security management system (ISMS). It usually involves a three-stage external audit process:
Stage 1 is a preliminary, informal review of the ISMS, which serves to familiarize the auditors with the organization and vice versa.
Stage 2 is a more detailed and formal compliance audit, independently testing the ISMS against the requirements specified in ISO/IEC 27001. The auditors will seek evidence to confirm that the management system has been properly designed and implemented, and is in fact in operation
Ongoing involves follow-up reviews or audits to confirm that the organization remains in compliance with the standard.
The audit
Crypto.com’s audit was led by international certification agency Bureau Veritas and covered multiple departments, functions, and products such as Crypto.com’s Wallet & Card App. The company’s information security controls and risks were examined on how security threats and vulnerabilities would impact the business, and whether the company has put in place sufficient controls to mitigate these security risks.
What does this mean for Crypto.com?
The certification is a stepping stone in Crypto.com’s General Data Protection Regulation (GDPR) journey. The certification stands as international validation of how Crypto.com handles its security, privacy and data protection within the organization.
Statements from the leaders
Jason Lau, Chief Information Security Officer of Crypto.com said, “The certification demonstrates that cybersecurity and privacy are embedded into Crypto.com’s DNA. These pillars are at the core of our culture which drives our commitment to the ongoing improvement of our security posture. This is an important milestone for our team as we build trust with our customers and partners during our global expansion.”
Kris Marszalek, Co-Founder, and CEO of Crypto.com said, “ISO/IEC 27001:2013 speaks volumes to our commitment to security and privacy which has been in the core of our business since we started. We will continue investing aggressively in our people, technology, and processes to maintain the highest standard of security in the industry.”
Security is the foundation on which successful crypto companies are built. We will continue investing in our people, technology and processes to maintain highest standards of security in the industry. https://t.co/KDWUMYAEMY
— Kris | Crypto.com (@Kris_HK) May 10, 2019
Crypto.com
Crypto.com is a pioneering payment and cryptocurrency platform with a vision to accelerate the world’s transition to cryptocurrency. Its key products include The Crypto.com Wallet & Card App, The MCO Visa Card, and the Crypto.com Chain.