Back

dotCMS Successfully Achieves ISO 27001:2022 Certification

Jul 11, 2023

dotCMS announced today that the leading content management system is now ISO 27001:2022 certified.

Achieving ISO 27001 certification involves undergoing a thorough assessment by an accredited certification body to ensure compliance with the standard's requirements. It provides a formal recognition that an organization has effectively implemented information security controls and practices.

“ISO 27001 is a milestone in our technological roadmap and represents our dedication to safeguarding our clients' sensitive data and ensuring the highest standards of security and compliance,” says Dr. Mehdi Karimi, Director of Cybersecurity at dotCMS.

“Our commitment to robust information security and operational excellence drives us to continuously enhance our processes, invest in cutting-edge technologies, and foster a culture of vigilance throughout our organization. With ISO 27001 and SOC 2, we have fortified our position as a trusted partner, providing peace of mind to our customers and reaffirming our relentless pursuit of maintaining the highest levels of security and trust in everything we do."

ISO 27001 covers various aspects of information security, including risk assessment and management, asset management, access control, cryptography, physical security, business continuity, and incident management. By implementing ISO 27001, dotCMS has demonstrated its commitment to protecting the confidentiality, integrity, and availability of its organization and customers’ information assets.

ISO 27001 certification is currently the most widely adopted international information security standard used by organizations worldwide. By following ISO 27001, organizations can be confident that their Information Security Management Systems (ISMS) are up to date and comply with current best practices.

dotCMS delivers security from the inside out by diligently enforcing rigorous controls and procedures to their organization and their customers’ information systems. They ensure the highest security standards by implementing policies that guarantee compliance across their people, processes, assets, and technologies.

Receiving the ISO 27001 certification, alongside their existing SOC 2 Type II certification, reinforces that dotCMS is committed to protecting its client's critical data and complying with applicable laws and regulations.

"We are proud to announce that our company has achieved the ISO 27001:2022 certificate while maintaining SOC2 Type II. Attaining these certifications has positioned us as a leading CMS vendor, renowned for our strong commitment to security and our ability to compete at the highest level of the market,” says Zain Ishaq, Chief Executive Officer.

About dotCMS

dotCMS is a content management system that helps global enterprises with multiple brands, subsidiaries and franchises, manage, optimize and scale content across languages and channels. Brands such as Dairy Queen, Newell, Firstmac, Telus and Comcast have chosen dotCMS for its unique ability to manage thousands of sites and consolidate multiple CMS' onto a single, unified instance of dotCMS to streamline content operations across teams while saving money on platform costs.

dotCMS' hybrid approach to content management also means that companies have the choice to deliver content traditionally or headlessly. Headless developers can work within the front-end framework of choice, while still providing marketers with visual editing tools so they can go-to-market with their business-critical content and decrease their dependency on technical teams.