Dedicated to Excellence

BriteSky Cloud and BriteSky Cybersecurity solutions are built on a commitment to excellence in everything we do and we continue to pursue certifications that allow us to deliver the highest quality products and services to our customers.

Service Organization Control 2 (SOC 2)

SOC2 logo All of our solutions are built with the same level of security trusted by banks, governments, and major credit card companies around the world to create private cloud infrastructures.

In addition, our solutions comply with American Institute of Certified Public Accountants (AICPA) SOC 2 Trust Services Principles for security, availability, processing integrity, confidentiality, and privacy.

The SOC 2 certification ensures that information security practices, policies, procedures, and operations meet or surpasses the rigorous SOC 2 standards. It shows our strong commitment to deliver high-quality services to our clients by demonstrating that we have the necessary internal controls and processes in place.

SAP Certifications

IT outsourcing operations services are increasingly important to SAP customers who want to ensure high-quality, sustainable, and cost-effective operation of their SAP solutions and environments.

To support this requirement, SAP-certified partners must provide high-quality outsourcing operations services and support. Certified providers undergo a rigorous assessment of their delivery and support capabilities every two years.

BriteSky has been an outsourcing partner for SAP since 2017, and is currently certified in Cloud and Infrastructure Operations.

SAP Certified for Cloud and Infrastructure Operations

ISO/IEC 27000 Standards

The ISO/IEC 27000 family of standards enables BriteSky to manage security of assets, such as financial information, intellectual property, employee details, and information entrusted to BriteSky by third parties.

ISO/IEC 27001 logo
ISO/IEC 27001 specifies the requirements for establishing, implementing, maintaining, and continually improving an information security management system (ISMS) within the context of an organization. It also includes requirements for assessment and treatment of information security risks tailored to the needs of the organization.
ISO/IEC 27017 logo
ISO/IEC 27017:2015 provides additional cloud-specific implementation guidance based on ISO/IEC 27002 and ISO/IEC 27001. It also provides controls to address cloud-specific information security threats and risks considerations. This code of practice is intended to mitigate the risks that accompany the technical and operational features of cloud services.
ISO/IEC 27018 logo
ISO/IEC 27018:2014 focuses on the protection of personal data in the cloud. Based on ISO/IEC 27002, it provides implementation guidance on controls applicable to public cloud Personally Identifiable Information (PII). It also provides controls and associated guidance to address public cloud PII protection requirements not addressed by the existing ISO/IEC 27002 control set.