The voluntary compliance standard for service organisations is maintained by the American Institute of Certified Public Accountants (AICPA). It provides a framework to annually assess an organisation’s internal controls for information security and privacy.
Mark Junge, Chief Executive of Gallagher Security, says that the level of transparency and confidence an external audit of this scale provides is critical to security customers:
“In 2023, there were over 800 publicly disclosed global security incidents resulting in an estimated 4.5 billion breached records (Ford, 2023; Irwin 2023). Our existing customers and those weighing up the decision to partner with us need assurance that our products and the business systems that sit behind them are robust. Continued SOC2 Type 2 certification provides just that.”
During the audit process, the cloud-hosted services of Gallagher’s Command Centre solution were examined by an external third party to ensure information security processes, policies and procedures complied with the stringent AICPA trust principles.
“The SOC2 Type 2 report verifies the effectiveness of our system design and operating effectiveness over time,” says Mark. “It is hugely important for us to stay ahead of the curve and provide this level of confidence in our security solutions.”
In addition to the SOC2 Type 2 accreditation, Gallagher Security maintains a comprehensive suite of standards and certifications including ISO27001, CAPSS 2021, and EN50131-4.