OutSystems Achieves ISO 27017 and 27018 Certifications for Cloud Security Compliance

Boston and Atlanta -  20 August 2019

OutSystems, provider of the number one low-code application development platform, today announced that it is the first leading low-code vendor to achieve two new cloud security certifications – ISO 27017 and ISO 27018.

As organizations develop, run and share a higher percentage of their applications on the cloud, stakeholders across the business are trusting platform providers to ensure their cloud-based environments are secure. These certifications demonstrate the high level of commitment OutSystems has to ensuring the privacy and protection of its customers’ data in the cloud.

“OutSystems customers deserve to know that the data and information they entrust us with is being protected using the most stringent controls in the industry,” said Jose Casinha, OutSystems Chief Information Security Officer. “We take our role as caretakers of information seriously. That’s why we’ve built 200 points of security into our platform and taken steps to validate our cloud security practices through the most rigorous certification processes.”

Adding the two new certifications extends the OutSystems record of achieving the highest levels of compliance for the protection of customers’ mission-critical assets. The company’s SOC 2 Level II certification, combined with the achievement of ISO 27001 and ISO 22301 certifications, establishes OutSystems as meeting the five Trust Services Principles – providing Security, Availability, Processing Integrity, Confidentiality, and Privacy.

 ISO 27017 and 27018 Certifications for Cloud Security Compliance

ISO 27017 and ISO 27018 build on the principles of the ISO 27001 standard, which provides a checklist of controls for a company’s establishment, operation and maintenance of an information security management system.

ISO 27017 focuses on the protection of the information in cloud services. It extends to cloud computing providers controls in earlier compliance standards that governed information management and sharing by IT vendors.

Complimenting this, ISO 27018 outlines requirements for the protection and privacy of user data in the cloud. It provides a code of practice for protecting personally identifiable information (PII) in the cloud, which was adopted by the International Organization for Standardization (ISO).

Learn more about how OutSystems is working to protect its customers’ sensitive data by visiting our Security page in the OutSystems Evaluation Guide.

Content you can’t miss
NextStep 2020

The new generation of developers work faster, more efficiently, and more imaginatively than ever before. NextStep is the place to learn everything you need to know, and to meet the OutSystems community of customers and partners already investing in the future of modern application development.

Gartner 2020 Magic Quadrant for Multiexperience Development Platforms (MXDP)

The Gartner Magic Quadrant for Multiexperience Platforms evaluates top vendors for mobile development. Learn why OutSystems is a Leader for the second year in a row.

The Forrester Wave™: Low-Code Development Platforms For AD&D Pros, Q1 2019

The latest research from Forrester makes it clear—low-code platforms for application development and delivery (AD&D) pros offer new value to enterprises and sophisticated development teams.

Journalists and analysts can contact us directly at pr@outsystems.com or +1 404-994-2614