Secured | Reliable | Partnership.
We are proud of the work we have done to manage our risk and ensure that our policies and processes are effective at keeping our client data secure. Successfully completing the ISO 27001 audit highlights Stern & Eisenberg’s continued commitment to deliver best-in-class solutions and safeguards that protect and secure our clients’ data.
ISO 27001
Stern & Eisenberg completes an annual ISO 27001 audit to demonstrate that their information security management system (ISMS) is integrated with the organization’s processes and overall management structure. Their annual ISO 27001 audit also confirms that information security is considered in the design of Stern Eisenberg’s processes, information systems, and controls.
ISO 27001 is the only internationally-accepted standard for governing an organization’s ISMS. The ISMS preserves the confidentiality, integrity, and availability of information by applying a risk management process and gives confidence to interested parties that risks are adequately managed.
Stern & Eisenberg Enterprise Strengths Identified during ISO 27001 Audit:
- Stern & Eisenberg understands the ISO 27001 standard and has put specific controls in place to meet the ISO requirements. They demonstrated a genuine interest in meeting the requirements of the standard and have implemented effective controls to meet the requirements.
- Stern & Eisenberg has a mature understanding of risk. High risk services have been transferred to a third party to limit risk where appropriate. Additional risks have been reviewed, mitigated where possible, and continually evaluated for opportunities to lower further risk.
- Stern & Eisenberg is always eager to improve their security posture, and they have implemented the suggestions documented by previous audits.
A Qualified Partner Helps Create Change
We value partnerships that encourage education, accountability, and teamwork. We want to create positive change for our clients and communities, and we want that from our own third-party relationships. Our audit partner is no different.
KirkpatrickPrice is an information security auditing firm whose goal is to make sure its clients are secure and compliant with whatever industry standards or customer demands they are facing. They seek to partner with clients and empower them to reach challenging compliance goals.
KirkpatrickPrice’s auditors make all the difference. They have been CTOs, CISOs, CSOs, and more. They understand the pressures clients are under as well as how difficult it is to become and stay compliant. That’s why they want to make sure every audit is worth it.
KirkpatrickPrice has completed over 20,000 audits and security assessments for over 2,000 clients worldwide.
Additionally, KirkpatrickPrice holds certifications with the following organizations:
Choose a partnership that values security and compliance.
When you work with Stern & Eisenberg, you work with a partner that values:
| Compliance | Data Security & Privacy | Quality Audits |
|---|---|---|
| You want to work with a firm that understands and supports your security and compliance efforts. With Stern & Eisenberg, you can be sure you’ve chosen a partnership that will help you meet those goals. This means that parts of your own compliance have already been completed. | The Stern & Eisenberg infrastructure puts strong safeguards in place to help protect your data privacy. Protecting your data is our main priority, so we’ve taken all the necessary steps to design a program that values and protects your data security and privacy just as much as you do. | We’ve chosen an audit partner who provides quality testing and results we can trust. Not all audits are created equally, but by working with KirkpatrickPrice on our ISO 27001 audit, we’re confident that the controls we have implemented are effective and compliant. |
Security and Compliance are Shared Responsibilities
Our system is designed to keep data safe. However, security is a two-way street, and we are both responsible for operating securely.
As a Stern & Eisenberg client you inherit all the best practices of our policies, architecture, and operational processes built to satisfy the requirements of industry standards and best practices.
As a Stern & Eisenberg client, you are also responsible for the use and management of the system and the data added to it.
When these two elements work together properly, you can be confident in the security measures designed to protect your valuable data.
Compliance Results in Confidence
Audits are challenging, but we’re proud of the hard work we’ve done to earn compliance with ISO 27001. We are committed to providing secure services, and these compliance efforts make us confident we’re doing what is necessary to make that happen.
ISO 27001
This attestation provides evidence that Stern & Eisenberg’s ISMS is effective and compliant with the ISO 27001 requirements, demonstrating our commitment to security and delivering high-quality services to our clients.
