The Inner Circle

Expand all | Collapse all

UK/EU Business Requirements

  • 1.  UK/EU Business Requirements

    Posted 16 days ago
    I am trying to find out specific ISO Standard requirements for datacenters in the UK/EU and also for RFPs of datacenter services. I have been told that these are required ISO 14001, 9001, and 27001 but wanted to verify that these are indedd requirements not a nice to have item. Thanks

    Bill DeLong CISSP/CCSK
    Senior Risk Assessor/Auditor
    Fortress Information Security
    Orlando, FL

  • 2.  RE: UK/EU Business Requirements

    Posted 8 days ago

    Here's a few things to start with ... but you're on the right track.


    ISO 9001

    ISO 9001:2015 outlines a process-oriented approach to documenting and reviewing the structure, responsibilities, and procedures required to achieve effective quality management within an organization. Consider a systematic, independent examination of the quality system to determine whether the activities and outputs comply with ISO 9001:2015.

    Information Security Management (ISO27001)

    An ISO27001 certification covering both corporate policies and procedures, as well as those of all our operating data centers. The ISO/IEC 27001:2013 certification is one of the most stringent certifications for information security controls and confirms the information security controls and other forms of risk treatment are in place to detect and defend against potential data system vulnerabilities.

    ISAE 3402 Type II
    The International Standards for Assurance Engagements (ISAE) 3402 is an international assurance standard for reporting on controls at service organizations to protect shareholders and the general public from accounting errors and fraudulent practices. It became effective on June 15, 2011, largely in response to the passage of the Sarbanes-Oxley Act, and it defines the standards an auditor must employ to assess the contracted internal controls of a service organization.

    Environmental Management

    ISO 14001
    ISO 14001 is an internationally agreed standard that sets out the requirements for an environmental management system. ISO 14001:2015, an internationally recognized standard for the environmental management of the business. This includes the use of natural resources, handling and treatment of waste and energy consumption.


    Uptime Institute - Tier II / III / IV etc. certification 

    Niels E. Anqvist