Interoute expands combined ISAE 3402 / SSAE 16 type II assurance report for its European data centres

London, 22 January 2015 - Interoute, owner operator of Europe's largest cloud services platform, has expanded the scope of its combined ISAE 3402 and SSAE 16 type II 2014 assurance report to include its Paris Data Centre Operations. The annual third party audited report provided by PricewaterhouseCoopers (PwC) now covers Interoute’s Amsterdam, Berlin, Geneva, London and Paris data centre operations. The type II report was completed by PwC, one of the world’s leading risk assurance consultants, following a six month sampling audit across seven fundamental security and risk control areas. The assurance report of Interoute’s controls provides assurance to global customers that their quality and security ICT service management requirements will be supported for their critical outsourced business technology standards.
Joe Stevens, Chief Security & Risk Officer for Interoute, said: “This is another significant expansion of our overall Enterprise Quality and Security Management System at Interoute. We maintain critical ICT business technology solutions for our customers and they expect us to continuously meet their quality and security challenges. The external assurance report produced by PwC measures the effectiveness of our ISO 20000 and ISO 27001 controls, and provides reporting transparency to our customers to support their governance demands.”
The PwC assurance report highlights the effectiveness of Interoute's operations regarding managed outsourced security and risks, and applies to Interoute’s virtual hosting infrastructure, including Interoute Virtual Data Centre (VDC). Enterprises trusting their data to external service providers demand the highest levels of security and independent compliance assurance. The report provides enterprises with the necessary assurance that their critical business systems and data are protected with Interoute.

The following controls have been tested and certified: security and risk governance, physical environmental and logical security and management of availability, as well as change configuration and continuity. Interoute's combined ISAE 3402 and SSAE assurance report proves that the company has the right processes and controls in place to secure the high demands for governance and certification across the company’s data centres. Interoute’s strategic approach to deliver this level of quality and security is to integrate the proven industry best practice standards (ISO 20000, ISO 27001, and PCI DSS) and ensure the integrity of its customers’ critical outsourced business applications. These quality controls are integrated across the company’s entire product portfolio and operations processes.