The ISAE 3402 audit covers key aspects of Penta’s operations, including security measures, data protection, environmental controls and service level agreements. The standard is recognised internationally, including by financial regulators like the Swiss Financial Market Supervisory Authority (FINMA), Dubai Financial Services Authority (DFSA), and the UK’s Prudential Regulation Authority (PRA).
The audit assures clients of the effectiveness of Penta’s internal controls. It allows our private cloud services to be used safely and with the utmost assurance in sensitive sectors such as IT for banking and finance, healthcare and government. The audit can also be presented to regulatory bodies as corroboration that the industries’ IT compliance requirements are met. Successfully passing this audit translates to more client confidence, improved risk management, and regulatory compliance.
The ISAE 3402 audit means they continue to benefit from rigorous IT security and operational controls, and automatic compliance with rules and regulations, at no extra cost. By working with a company that has been audited by an international organisation (Ernst & Young), they can be assured that their IT operations align with stringent regulatory requirements, in particular the DFSA and FINMA. Clients can also use the audit for their own reporting requirements in the case of legal or compliance enquiries, resulting in significant savings.
The ISAE 3402 audit tests the effectiveness of internal controls over 12 months. Penta undergoes this audit once a year with this latest version covering the year 2024.
“At Penta, we recognise that the security and compliance of our clients’ information is critical to their business success. The ISAE 3402 audit shows our commitment to provide the highest levels of security, compliance, and quality service to our clients.” Farhad Khalilnia – CEO, Penta.