TECSISA has obtained the SOC 1 Type II report after undergoing a security audit carried out by the firm Ernst & Young (EY)
This initiative aims to have a report issued by an independent entity and carried out on the already demanding internal control environment defined by TECSISA. This report has been made according to the ISAE standard n. 3402, internationally recognized and which is especially relevant to guarantee the regulatory compliance of clients who contract solutions that have an impact on their financial reporting.
The report covers the areas of risk management, logical access, change management, data confidentiality, integrity, and availability. Comprehensive security management is essential for organizations in any field and especially relevant for those belonging to critical sectors such as the energy sector, for which TECSISA offers software solutions in the cloud, developed on its Kommodo platform, aimed at digitizing the business processes of generation and commercialization of electricity and gas.
To do this, TECSISA has demonstrated high levels of maturity in its internal processes and has reinforced the mechanisms for preserving the confidentiality, integrity and availability of information.
This new milestone, together with the comprehensive management of Information Security through an ISMS based on the ISO/IEC 27001:2017 standard, allows us to have effective risk management tools through widely tested procedures globally.
Security management is an integral part of TECSISA’s commitment to providing energy and utility companies with software solutions on Kommodo, the scalable and secure platform, designed with native cloud computing and Big Data technologies that are marketed in SaaS mode (Software as to Service).