Fibernet’s security controls pass the SOC 1 Type II certification.
Orem, UT Fibernet Corp., local colocation and Internet Service Provider since 1994, has taken the next step in data center security certification with its newly awarded SOC 1 Type II report.
The Statement on Standards for Attestation Engagements number 16, or SSAE 16, includes SOC 1, or Service Organization Controls 1, as one of its certification reports. These have replaced the old SAS70 certification process, and satisfy the Sarbanes-Oxley Act of 2002.
The controls specify the procedures that service organizations (data centers) must follow for financial transaction security. Type I certification means that a business was compliant at the time of attesting. Type II certification takes an entire year of demonstrable compliance, and the SOC 1 standards must be followed throughout the whole year. Type II reports are more in-depth, and the best way of showing consistently high performance. The Cadence Group, a third-party accounting firm based in Salt Lake City, performed the attestation.
Regarding the certification, Fibernet CFO Lee Livingston said, “This process has been underway for the whole of this past year, and we’re proud that we have this qualification as proof of our dedication to our customers. A Type I report is sufficient for some companies, but our Type II report shows that we mean business.”
In April of 2009, Fibernet became the first data center in Utah to comply with and be certified in PCI standards. It is one of the first businesses in the world to become an approved service provider by the credit card industry.