Genetec Achieves Stringent Certifications through Commitment to Cybersecurity and Privacy

Company announces ISO 27001, 20017 standards, obtains UL 2900-2-3 level 3 cybersecurity certification, and SOC2 Type 2 audit

Genetec Inc. has achieved a number of certifications underscoring its unwavering commitment to ensuring the cybersecurity of its solutions and the ISMS (information security-management systems) that govern them.

Genetec has maintained ISO 27001 certification for the sixth consecutive year and exemplifies its commitment to cybersecurity by also implementing ISO 27017 standards.

With ISO 27001 and 27017 certifications, Genetec customers can be confident they are working with an organization that has put stringent controls in place to manage sensitive data and mitigate cyber threats. This includes use of the company’s cloud solutions including Autovu CloudrunnerTM, Security Center SaaS edition, Genetec Stratocast™, Genetec Clearance™ , Genetec ClearID™ , SynergisTM, Access Control as a service, and Genetec Curb Sense™.

Developed by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC), ISO/IEC 27017 builds on the principles of the ISO 27001 standard, which provides a checklist of controls for a company’s establishment, operation and maintenance of an information security management system.

ISO 27017 focuses on the protection of the information in cloud services with a focus on major control areas including asset management, access control, physical security, and compliance. With ISO 27017, an organization’s system and processes are subject to stringent security and privacy standards.

Genetec has also received the UL 2900-2-3 level 3-cybersecurity certification for the fourth year in a row. The company remains the only VMS vendor in the world to have achieved this certification. The UL Cybersecurity Assurance Program (UL CAP) is a robust certification program that evaluates the security of network-connectable products and vendor processes. The UL 2900-2- level 3 standard, for which the Genetec Security Center Omnicast™ VMS is certified, is specifically designed for life safety and physical security systems. It includes a series of checks including fuzz testing, code and binary analysis, vulnerability assessment, penetration testing, and risk management methodology validation.

Genetec has also passed the SOC 2 Type 2 audit to include its entire portfolio of cloud products and ISMS that govern them. This signifies that internal controls at Genetec, built on best industry practices, are aligned with SOC 2 Type 2 criteria and requirements.

Defined by the American Institute of Certified Public Accountants (AICPA), this report offers prospective Genetec customers and partners’ peace of mind, as it is a stamp of approval that the company is compliant with best practices in data protection and has all the appropriate safeguards and procedures in place to control who can access sensitive data. The SOC 2 Type 2 audit conducted by third parties covers five key areas: security, availability, processing integrity, confidentiality, and privacy. Genetec has also obtained the SOC 3 report which can be consulted here.

“Certification with ISO and UL standards, and SOC 2 Type 2 audits are essential elements of our comprehensive approach to cyber resilience. Customers can be sure we have the right policies and procedures in place to manage sensitive data when they use our cloud solutions or hybrid deployments,” said Mathieu Chevalier, principal security architect, Genetec Inc.

Featured

  • Gaining a Competitive Edge

    Ask most companies about their future technology plans and the answers will most likely include AI. Then ask how they plan to deploy it, and that is where the responses may start to vary. Every company has unique surveillance requirements that are based on market focus, scale, scope, risk tolerance, geographic area and, of course, budget. Those factors all play a role in deciding how to configure a surveillance system, and how to effectively implement technologies like AI. Read Now

  • 6 Ways Security Awareness Training Empowers Human Risk Management

    Organizations are realizing that their greatest vulnerability often comes from within – their own people. Human error remains a significant factor in cybersecurity breaches, making it imperative for organizations to address human risk effectively. As a result, security awareness training (SAT) has emerged as a cornerstone in this endeavor because it offers a multifaceted approach to managing human risk. Read Now

  • The Stage is Set

    The security industry spans the entire globe, with manufacturers, developers and suppliers on every continent (well, almost—sorry, Antarctica). That means when regulations pop up in one area, they often have a ripple effect that impacts the entire supply chain. Recent data privacy regulations like GDPR in Europe and CPRA in California made waves when they first went into effect, forcing businesses to change the way they approach data collection and storage to continue operating in those markets. Even highly specific regulations like the U.S.’s National Defense Authorization Act (NDAA) can have international reverberations – and this growing volume of legislation has continued to affect global supply chains in a variety of different ways. Read Now

  • Access Control Technology

    As we move swiftly toward the end of 2024, the security industry is looking at the trends in play, what might be on the horizon, and how they will impact business opportunities and projections. Read Now

Featured Cybersecurity

Webinars

New Products

  • QCS7230 System-on-Chip (SoC)

    QCS7230 System-on-Chip (SoC)

    The latest Qualcomm® Vision Intelligence Platform offers next-generation smart camera IoT solutions to improve safety and security across enterprises, cities and spaces. The Vision Intelligence Platform was expanded in March 2022 with the introduction of the QCS7230 System-on-Chip (SoC), which delivers superior artificial intelligence (AI) inferencing at the edge. 3

  • Compact IP Video Intercom

    Viking’s X-205 Series of intercoms provide HD IP video and two-way voice communication - all wrapped up in an attractive compact chassis. 3

  • A8V MIND

    A8V MIND

    Hexagon’s Geosystems presents a portable version of its Accur8vision detection system. A rugged all-in-one solution, the A8V MIND (Mobile Intrusion Detection) is designed to provide flexible protection of critical outdoor infrastructure and objects. Hexagon’s Accur8vision is a volumetric detection system that employs LiDAR technology to safeguard entire areas. Whenever it detects movement in a specified zone, it automatically differentiates a threat from a nonthreat, and immediately notifies security staff if necessary. Person detection is carried out within a radius of 80 meters from this device. Connected remotely via a portable computer device, it enables remote surveillance and does not depend on security staff patrolling the area. 3