ASSURANCES & CERTIFICATIONS
ISO 20000 is the standard for Information Technology- Service Management based on the Information Technology Infrastructure Library (ITIL®) framework. It specifies the requirements for a service provider to effectively plan, implement, operate, secure, monitor, review, maintain and improve its Service Management System. The requirements include the design, transition, delivery and improvement of services to fulfill agreed service requirements. C Spire is also part of an elite group of organizations certified to the ISO 20000 internationally-endorsed standard, with demonstrated experience implementing ITIL best practices. Click here to view our certification.
C Spire annually conducts an independent third-party SSAE18 SOC1 Type II and AT 101 SOC2 Type II audit. Both audits provide assurance that our controls are operating effectively to meet their objectives.
The SOC1 includes onsite testing of our IT General Controls at our Data Center locations. Click here to view our SOC1 Audit Statement
The SOC2 includes onsite testing of the standard Trust Principles (TSP 100) for Security, Privacy, Confidentiality and Availability of information that is stored in our Managed & Cloud Systems. Click here to view our SOC2 Audit Statement.
Each year, an independent service auditor examines the processes and activities of our Managed Services Operations to ensure the effectiveness of the documented controls we have in place. The audit consists of onsite examination and testing at each of our data center facilities. C Spire’s SSAE18 Audit Report is available to clients upon request – please contact your Account Manager for details. For additional information, please click here.