CUSP Point Software Blog

On Monday we leave for the PRISM EMEA Conference in Budapest, Hungary.

PRISM is a very important partner for CUSP as it is the premier trade association globally for companies that specialize in the storage, retrieval, organization and disposition of client information assets.

With nearly 600 members, headquartered in over 40 countries and 1000 facilities worldwide, PRISM members are the bull’s-eye of CUSP’s target market.

The ability to present the unique and differentiated offering of CUSP’s PaperTrail Solution to those members as a new, immediately activatable, recurring revenue stream to offer their customers is precisely why we support all PRISM activities.

In Budapest I will be speaking about my pet subject and favorite CUSP market differentiator - Security Certifications for SaaS and Enterprise EDM software providers.

In a traditional sense a Security Certification presentation would not exactly have them lined up at the door for a seat. But in Budapest we’re taking a different approach to presentation.

Having just completed our ISO 27001 audit, and being in the midst of our SAS 70 Type I audit, we’re going to share with all of those attending exactly what it takes to achieve these certifications by way of building a corporate culture founded on security at the individual employee level.

In a commercial sense, by “sharing” the responsibility with all employees, the depth and quality of daily corporate life, as evaluated in terms of security, becomes as easy to measures as sales.

This is a fundamental shift in how CUSP has approached the security certification process, and the results have been extremely rewarding as well as successful.

As soon as I’m back I’ll give you an update on whether they were running in or out of the doors in Budapest…

Seamus Brennan
CEO
CUSP Point Software Ltd.

Whenever there is an audit for anything the attention and nerves are up.  Last week CUSP had its annual ISO 27001 Audit that is the European equivalent to SAS 70 Security Certification.

This was particularly noteworthy because it was our first security audit since moving into new headquarters in Dublin, and with a staff of 40+, the audit was going to cover all aspects of software development, operations, data management, organizational process and overall security in CUSP as an embedded culture.

The rigorous two day examination involved weeks of preparation for required materials; extensive staff interviews and a review of all Security Process/Procedures under the control of CUSP’s Security Director, Henry Ojo.

I am very pleased to share with you that CUSP successfully completed this audit without any required corrective action and received a strong endorsement of the security culture that we have implemented in all areas of the business.

Of all the good things we have achieved to date, this recertification and related comments about the CUSP culture were particularly rewarding. As many of you know, CUSP believes that “Corporate Security” is a foundational requirement of any SaaS EDM solution.

Having utilized Data Centers that are only ISO 27001 or SAS 70 Type II Certified is also a requirement, BUT there is no replacement for a development and data management company to hold these security Certifications without question or accountability.

This is the prime reason why we have a full time Security Director on staff in Henry driving our Security roadmap, and we pride ourselves on the market differentiation it gives us.

In September we will be audited for SAS 70 Type I Certification and then move as of October 1st in to the 6-month audit period for SAS 70 Type II Certifications.

During this time we will be adding other Certifications for security that address specific aspects of the market requirements for EDM in various verticals.  We believe that the “chain of custody” on a document should not be broken by the SaaS EDM solution provider and CUSP intends share this reality with the market and encourage the rest of the sector to invest and commit to security in all aspects of SaaS EDM.

All at CUSP are proud of this achievement and look forward in the coming months to share with you additional Security Certifications as received.

Seamus Brennan
CEO CUSP Point Software Ltd.