As an Atlassian Platinum Marketplace partner, ensuring the security of our app is paramount.
One effective way to demonstrate your commitment to security is through certifications. Certifications involve the audit of your security practices, policies, and operations by external professionals. These certifications come in different standards, with ISO 27001 and SOC2 being the most common ones. While ISO 27001 is internationally accepted, SOC2 is popular in North America, more domain specific ones like FedAMP or HIPAA exist as well.
The importance of certification
Since April 2023, yasoon is ISO 27001 compliant. Adherence to standards helps build trust and quickly gain approval from security teams. This is particularly important when dealing with a customer base that values certifications, such as in Germany. In our experience, ISO 27001 is widely recognized internationally, making it a valuable certification for us to pursue.
Why did we choose Vanta for yasoon’s certification?
Vanta is a mature SaaS that helps you automate most of the work required to obtain ISO 27001. It has a stellar reputation and extensive experience in the industry. It is a popular choice among developers due to its strong presence on GitHub (aka “It has the most stars on Github”). It offers seamless integration with major platforms such as M365, AzureAD, GitHub, and AWS. This alignment allows for efficient monitoring and streamlines the certification process.
Once you have obtained one certification, such as ISO 27001 or SOC2, Vanta offers discounted rates to extend your compliance to other standards like GDPR. This helps you address multiple compliance requirements simultaneously. Not a day went by where we did not think “Wow, this is actually worth the money”. We’d have no certification, if not for Vanta.