(206) 838-5400
Contact Us
Hubspan Connections Blog
 
Sign up for our free expert email series
 
Contact Us

See how Hubspan can help solve your integration challenges.

verification image, type it in the box

* marks required field

 
Case Studies
Hubspan Survey
 
« Back to Hubspan Connections Blog

Hubspan Achieves SAS 70 Compliance for 4th Straight Year

Posted by on December 14, 2010

This week, we announced the successful completion of our SAS 70 Type 2 audit.  With this Certification, Hubspan has maintained SAS 70 compliance for four years running. We are proud of this accomplishment, not only because it is a company-wide initiative that takes discipline and clear processes, but because it is one more reason our customers can be assured they are working with a best-in-class service provider.

The SAS 70 standard (officially known as The Statement on Auditing Standards No. 70, Service Organizations) provides critical guidance in the selection of a service provider, and is a widely recognized benchmark that an organization has been through an in-depth, independent audit of its control activities.

It was developed by the American Institute of Certified Public Accountants (AICPA), and it requires a third-party auditor to review and approve your compliance.  As I mentioned above, it spans a wide range of operational areas, including:  

  1. Organization and administration
  2. Customer implementation and administrations
  3. Physical and environmental controls
  4. Logical access controls
  5. System availability and performance
  6. Application software development and maintenance
  7. Infrastructure software development and maintenance
  8. Backup and maintenance

A small example of our SAS 70 compliance is in our recruiting procedures.  For every candidate, interviewers must complete a form evaluating that candidate. Each candidate must be evaluated using the same criteria.  When hiring, a prospective employee goes through a mandated series of background checks and at least three references, and reference forms must be completed and submitted to HR, who must maintain these files and be ready to show the auditors. This same level of clear process and control extends cross the company. 

By itself, it is an impressive validation of a company’s control mechanisms, but when combined with other compliance mandates, it is truly powerful. In addition to the SAS 70 Type II Certification, Hubspan is PCI DSS compliant and also follows security and data protection guidelines as those outlined by the U.S. Department of Defense, the Open Web Application Security Project (OWASP), the Cloud Security Alliance and others.

With millions of messages traversing our B2B cloud every day for thousands of companies worldwide, security, compliance and control are top of mind at Hubspan. It’s not just marketing speak, either, but defined capability and standards across our technology, people and processes

About Margaret Dawson

Margaret Dawson is Vice President of Product Management and Marketing for Hubspan.

No Comments »

No comments yet.

Leave a comment

© 2012. All rights reserved.



Site by Portent, an Internet Marketing Company