Denver, CO— April 17, 2018

Ping Identity, the leader in Identity Defined Security, today announced that its corporate office in Denver and its key products achieved ISO/IEC 27001:2013 certification, the international standard outlining best practices for information security management systems. Compliance with these standards demonstrates Ping Identity’s commitment to a repeatable, continuously improving, risk-based security program. The management system was inspected by Coalfire ISO, Inc., a certification body for management systems accredited through the ANSI-ASQ National Accreditation Board (ANAB).

Established by the International Organization for Standardization (ISO), the standard requires the certification of an organization’s information security management controls for areas such as data security and business continuity. The certification extends to every level of an organization’s IT infrastructure stack, including asset management, access control, human resource security, and application security.

The in-scope products for the ISO certification include PingOne, PingID, PingFederate, PingDirectory, PingAccess, PingDataSync and PingDataGovernance.

“The primary job of Ping Identity’s security team is to create products and services that are resilient and assured. In doing so, we can be sure that our business operations are equally secure,” said Robb Reck, chief information security officer, Ping Identity. “We’ve invested in the ISO 27001 certification to provide additional transparency to our customers.”

“Leveraging the ISO framework for our security implementation has provided Ping Identity with a common language as we continue to deploy common controls and procedures throughout our organization,” added Stephen Edmonds, senior director of GRC, deputy CISO, Ping Identity. “Between our SOC 2 report and ISO 27001 certification, we’ve demonstrated to our customers that we have applied appropriate controls throughout both our corporate and production environments.”