3/26/2025

ISO 27001:2022 Security Commitment

Digital Edge is committed to continuing to conform to the requirements of ISO 27001:2022 and has maintained its ISO certification for nearly a decade.


ISO 27001 requires a clear and meaningful buy-in from all staff members, from the top executives to the employees working on our front-line operations. Our Information Security Management System (ISMS) is built around our data and takes into consideration all our internal and external issues, and the needs and expectations of all of our stakeholders.


Our security controls are determined using a risk-based approach to cybersecurity where we analyze our security risks in detail with input from our subject matter experts. Risks are rated according to likelihood and severity, and then controls are identified or chosen. All security risks must be controlled to the point they are low enough to meet our risk appetite.


Our security controls are based off of the ISO 27001 Annex controls and consist of Organizational Controls, People Controls, Physical Controls and Technological Controls. Some controls are purely administrative (procedural) while others are highly technical. The technological controls are implemented by the Digital Edge technology teams who are very adept and qualified in their respective areas. All these technological controls are maintained and work together with the administrative controls to form a cohesive system that is monitored by the Digital Edge Compliance team.


At Digital Edge we are very proud of the ISMS we have built and the security it provides for our clients. Digital Edge is always happy to use our expertise in assisting our clients in meeting their security goals.

 

Keith J. Barry, Esq.
VP of Compliance

Keith J. Barry joined Digital Edge in 2013. Keith possesses a BA in Computer Science, a Juris Doctor degree from Brooklyn Law School, as well as several industry certifications including AWS Cloud Architect, CompTIA Network+, and CompTIA Server+. His career has mirrored his diverse interests, and Keith has experience on the technical side as a senior systems administrator, and on the legal/business side as an attorney and cybersecurity compliance officer.