Category: Cloud

ISO 27001 Certification: security as a standard for our cloud products

Digitalization is shaping our lives and workplaces like never before. With this evolution comes an increased responsibility to protect data effectively and ensure stable service delivery. Information security is no longer a “should” but an absolute “must.”

As a provider of industrial software solutions from the cloud, quality, security, and reliability are our top priorities. We are delighted to announce our successful ISO 27001 certification by Datenschutz Cert. This confirms our commitment to providing products that meet the highest security standards and effectively protect data.

More security, efficiency, and sustainability with automation

Our goal was clear from the beginning: to meet security and stability requirements with innovative technologies. We rely heavily on automation and Infrastructure as Code (IaC) to achieve this. These measures enable us to implement security mechanisms effectively and integrate them seamlessly into our development and operating processes.

One crucial aspect of our preparations was to take climate risks into account. Events like extreme weather pose potential threats to IT infrastructures. In response, we developed solutions that minimize risks while enhancing efficiency – such as monitoring tools and automated scaling. These technologies reduce our carbon footprint and help to ensure a high level of security and sustainability.

Security culture as a success factor

Information security is more than just meeting standards—it is an integral part of our corporate culture. Principles such as high availability, automation, and the use of a single source of truth define how we work and foster a structured approach to tackling complex challenges. A standout aspect is the contribution of our team. Regular training and a high level of security awareness ensure that information security is not just seen as a task for IT, but is practiced throughout the entire company. This holistic mindset was a cornerstone of our journey to achieving ISO 27001 certification.

Our automation strategies further illustrate how we combine efficiency with security. By standardizing processes, we reduce human error while laying the foundation for continuous improvement.

Added value for customers and partners

For our customers, certification means one thing above all: trust. ISO 27001 certification is an internationally recognized seal of quality and confirms that we adhere to the highest security standards. This not only enhances the reliability of our cloud products but also assures our customers that their data is in safe hands.

Our partners also benefit significantly from this certification. Standardized processes and clearly defined security requirements make collaboration more seamless, boost efficiency, and establish a foundation of trust for future projects. It is a crucial competitive advantage, especially in a dynamic environment like the cloud industry.

Our vision for the future

ISO 27001 certification is not an endpoint for us but a milestone in our ongoing journey to continuously enhance our security measures. For instance, we plan to make our monitoring systems even more robust, enabling us to detect potential risks more quickly and address them more effectively. The digital landscape is constantly changing – we are ready to face these challenges and ensure the security of our customers, partners, and their data.

Anyone out there not yet in the cloud?

Yes, this is a serious question: Is there anyone who does not yet use cloud services, whether from their computer at home, at work or directly from their cell phone? We have all become so accustomed to using cloud servers like WhatsApp, Facebook or Dropbox. And these services work, are secure and are always available. Who would want to set up their own server at home for data communication or file exchange? Even at work, more and more companies are renting data exchange (Dropbox Enterprise) and communication services (Slack, MS Teams). In short: The use of cloud services at home and at work is becoming more and more standard.

So why not use the same kind of data management, file sharing and collaboration services for product-related data such as 3D CAD models, bills of materials and design specifications in the cloud?

Why not PLM from the cloud?

In the past, there was some skepticism about this in terms of network bandwidth, performance and security. But cloud solution providers, especially the big cloud hyperscalers, have done their homework, providing sufficient network capacity and even running their own physical cables across oceans. Take a minute and do the speed test at Amazon’s AWS Global Accelerators (https://speedtest.globalaccelerator.aws/#/).

Security concerns can also no longer be a valid argument for not running business-critical applications like a PLM system in the cloud. Companies like AWS, Azure and Google offer everything you need for highly secure, encrypted communications. Add your own virtual private network, single sign-on directory access, and multifactor authentication with timeout, and you’re as secure or more secure than you could ever be with your own infrastructure.

Cloud PLM from CONTACT Software

So it is a logical step that CONTACT Software also offers its solutions in the cloud. The idea: to reach a larger customer base faster (time to value). Since then, numerous potential and existing customers have actively approached us to run our products CIM Database PLM, the project management solution Project Office or the IoT platform CONTACT Elements for IoT in the cloud.

The CONTACT Cloud Solutions offer customers, on the one hand, a standard SaaS solution (Software as a Service – see NIST) with all PLM, project management and IoT functions that you can also install on-premise. In addition, there are predefined ERP interfaces in our technology platform as well as CAD integrations based on the new Workspaces Desktop for Web. For customers who want to customize the application or even implement their own solutions on top of the CONTACT Elements framework, CONTACT offers an enterprise edition of its platform in the cloud. This contains the entire CI/CD DevOps infrastructure to program locally, merge customizations, verify and deploy to test and production instances in the cloud.

So what is there to wait for? Get to know the possibilities of the CONTACT Cloud now.