Company Also Earns New ISO 22301 Certification for Business Continuity, Highlighting Operational Reliability for Customers

Versa Receives ISO 27001 Certification for Sixth Year, Validating Investment in World-Class Information Security

Dan Spalding
dspalding@versa-networks.com
(408) 960-9297

Versa, the global leader in Universal Secure Access Service Edge (SASE), today announced it has passed an annual surveillance audit confirming adherence for the sixth straight year to ISO 27001 standards for information security management systems (ISMS). The company also announced it received a new ISO 22301 certification for the security and resilience of its business continuity management systems (BCMS). These certifications reflect Versa’s continued investment in maintaining the security and privacy of customer data and ensuring operational continuity by meeting the most rigorous international standards.

Information Security Management

ISO 27001 is the most recognized global framework for implementing, maintaining, and continuously improving an ISMS. This certification and recent validation through the successful surveillance audit reflect Versa’s systematic approach to managing sensitive data owned or handled by Versa, including robust measures in areas such as risk management, data protection, and governance to support the secure delivery of Versa’s Universal SASE services. The certification and validation prove the Versa system adheres to all the best practices and principles enshrined in the international standard.

Business Continuity

Versa has implemented a BCMS that conforms to the requirements of ISO 22301, which was developed by the International Organization for Standardization (ISO) to standardize the process for establishing, implementing, operating, monitoring, reviewing, and maintaining a BCMS. This standard is crucial for organizations to enhance their resilience against various unforeseen disruptions, ensuring continuity of operations and services. It helps in identifying risks, preparing for emergencies, and improving recovery time. An extensive third-party certification audit was performed in two stages, the first to review Versa’s system and process documentation, and the second to evaluate the conformity and effectiveness of the actual implementation of Versa’s BCMS.

To learn more about Versa’s latest certifications and ongoing commitment to meeting the highest independent and government-led cybersecurity and information management standards, visit Compliance and Certifications at the Versa Security and Trust Center.

“Our latest ISO 27001 and ISO 22301 certifications reflect our ongoing commitment to the highest information security management and business continuity standards,” said Kumar Mehta, CDO of Versa. “As Versa continues to advance the industry’s leading Universal SASE platform, customers can trust that we follow stringent practices and protocols to keep organizational data safe.”

Versa’s Security Certification Program

Versa continues to invest in security certifications that are significant for enterprises, governments, and service providers responsible for critical infrastructure who must ensure the highest levels of security and performance for their organizations. Other major certifications achieved by Versa include:

• FIPS 140-2 issued by NIST – complete end-to-end security with FIPS validated cryptography for the entire solution. FIPS 140-2 is typically required to complete Common Criteria EAL4+.
• SOC 2 Type 2 – signifies that a service organization has undergone a comprehensive audit of its internal controls related to security, availability, processing integrity, confidentiality, and privacy, conducted by an independent third-party auditing firm.
• PCI DSS Compliance – Versa solutions have demonstrated compliance with the Payment Card Industry Data Security Standard (PCI DSS), which is essential for organizations handling credit card and payment data.
• HIPAA Compliance – signifies that an organization or entity subject to the Health Insurance Portability and Accountability Act (HIPAA) has implemented the necessary safeguards and measures to protect the privacy and security of individuals’ protected health information (PHI).
• Common Criteria EAL4+ – ISO 15408 is a European Union framework for cybersecurity testing and certification of commercial products, with the Versa Operating System (VOS) underlying Versa’s Universal SASE and SD-WAN platforms achieving the highest level of security assurance.
• Common Criteria NIAP – National Information Assurance Partnership (NIAP) evaluated and certified VOS, with the Network Device Common Protection Profile (NDCPP), Firewall Protection Profile, VPN Gateway Protection Profile, and Intrusion Prevention System (IPS) Protection Profile.

About Versa

Versa, a global leader in SASE, enables organizations to create self-protecting networks that radically simplify and automate their network and security infrastructure. Powered by AI, the VersaONE Universal SASE Platform delivers converged SSE, SD-WAN, and SD-LAN solutions that protect data and defend against cyberthreats while delivering a superior digital experience. Thousands of customers globally, with hundreds of thousands of sites and millions of users, trust Versa with their mission critical networks and security. Versa is privately held and funded by investors such as Sequoia Capital, Mayfield, and BlackRock. For more information, visit https://www.versa-networks.com and follow Versa on LinkedIn and X (Twitter) @versanetworks.

Versa Networks, VOS, the Versa logo, and Versa Titan are or may be registered trademarks of Versa Networks, Inc.

View source version on businesswire.com: https://www.businesswire.com/news/home/20250305822293/en/

Versa receives ISO 27001 certification for sixth year validating investment in world-class information security; Earns new ISO 22301 certification for business continuity highlighting operational reliability for customers