Attestations affirm integrity, security of KISTERS software

KISTERS has successfully passed a combined audit to demonstrate software compliance with SOC 2 Type 2 and BSI C5 Type 2 standards for its cloud services. The attestations assess the company’s ability to maintain high standards of information security and data protection over time. The new distinctions further exhibit the firm’s commitment to data security. KISTERS has maintained ISO 27001 certification since 2017.

Since the company provides software and IT solutions to the energy and water sectors, compliance with high security standards reflects corporate goals to protect customer data from unauthorized access, ensure system availability, and detect security incidents.

“IT security and data protection are our top priorities,” comments Klaus Kisters, CEO of the KISTERS Group. “Independent attestations and certifications in accordance with internationally recognised regulations make our cost-intensive security measures tangible for our customers. They strengthen trust in KISTERS as an IT service provider and at the same time help them to fulfil their own regulatory requirements in the area of information security.”

Issued by the American Institute of Certified Public Accountants (AICPA), the SOC 2 attestation proves that KISTERScloud services fulfil the requirements of the five Trust Services Criteria (TSC) security, availability, processing integrity, confidentiality and data protection. During an earlier audit KISTERS fulfilled the SOC criteria at a certain point in time, earning the Type 1 designation. The Type 2 designation indicates that the company has consistently implemented measures for information security and data protection for a longer duration.

Issued by BSI, or the German Federal Office for Information Security, the C5 standard assesses the operational security of cloud service providers including infrastructure and data protection measures.