Penta is pleased to announce it has scored a ‘no deviations noted’ compliance rating following a year-long independent audit.
A ‘no deviations noted’ rating is the top award for the ISAE 3000 and ISAE 3402 certificates and Penta was assessed by internationally recognised auditor Ernst & Young for its performance during 2017.
Robust
To gain the certification, Penta had to demonstrate its services are sufficiently robust to meet the standards required by law to operate in the financial services industry.
The purpose of these assurance reports is to provide businesses, and their clients, with an objective report which expresses an opinion about the control environment of a service organisation.
The result is an independent and objective opinion about a standardised set of service objectives which are typically tested each year so as to assess the quality of the infrastructure at any one moment and measure the continuing quality of service over a period in time.
Peace of mind
The certification, which essentially acts as a gold standard for regulatory compliance in the IT sector, provides peace of mind to Penta’s clients it is a responsible operator delivering quality, secure services.
The audit covers key aspects of Penta’s business, including security measures, data protection, environmental controls and service level agreements.
In its report, E&Y said: “We have no reason to believe that IT and Managed Services provided by Penta put the compliance of its banking clients into question.”
Peter Philp, Penta’s Communications Manager, said:
“With Penta’s regular audits, our clients can prove to the authorities that their IT is managed as it should be. But perhaps more importantly, they have peace of mind and can also reassure their own clients their services are absolutely secure.”