Zoom has announced that it has obtained the worldwide widely used security standards ISO / IEC 27001: 2013 and SOC 2 + HITRUST certifications.
Zoom Video Communications, Inc. announced that the unified communications platform has added ISO / IEC 27001: 2013 and SOC 2 + HITRUST security certifications to its industry-recognized list of certifications and certifications. These new certificates, added to third-party auditing, which is an integral part of Zoom's security approach, will make a significant contribution to the platform's understanding of data privacy transparency towards its customers.
ISO/IEC 27001:2013: Operational information security management
In this context, Zoom Meetings, Zoom Phone, Zoom Chat, Zoom Rooms, and Zoom Webinars are now certified in accordance with International Organization for Standardization (ISO) / International Electrotechnical Commission (IEC) 27001: 2013. ISO /IEC 27001:2013 certification, a widely used security standard worldwide, carried out by third-party auditors, covers security best practices and control processes. Institutions wishing to obtain the certificate must have a strict security program, including the operationalization of the Information Security Management System (ISMS). ISMS defines and manages the controls that organizations must implement to ensure that the confidentiality, availability and integrity of assets are reasonably protected from threats and vulnerabilities.
SOC 2 + HITRUST: A more transparent control mechanism
Zoom has expanded the scope of the current SOC 2 audit report to include additional criteria to meet the Health Information Trust Alliance Common Security Framework (HITRUST CSF) control requirements. HITRUST is a security standard that uses nationally and internationally accepted standards and regulations such as GDPR, ISO, NIST, PCI and HIPAA.
Zoom's SOC 2 + HITRUST report also provides a transparent look at the controls that maintain the security and usability of the Zoom platform, as it complies with the American Institute of Certified Public Accountants (AICPA) Trust Services Principles and Criteria (TSC) and the HITRUST CSF. This approval also applies to Zoom Meetings, Zoom Phone, Zoom Chat, Zoom Rooms and Zoom Video Webinars.
The goal is a more secure platform experience
Zoom is constantly improving its platform with new features, working to create a smooth and secure experience for its users. Compliance with these internationally accepted standards helps Zoom demonstrate its commitment to data privacy and user security. At this point, third-party certificates play an important role in improving Zoom's security standard as a critical component of building a trust-based platform.
For more information about Zoom's new security certificates, you can visit the trust center or speak to an expert on the subject.