Skip to Content

Kutak Rock Awarded ISO IEC 27001 Certification

News | June 21, 2019

Kutak Rock announced today that the firm has been awarded the highly respected ISO 27001 Certification of its information security management system. The ISO 27001 certification is the most widely recognized and accepted information security standard in the world. It provides all Kutak Rock clients, stakeholders and regulators with validation that the firm’s data security guidelines, policies and procedures meet international standards for best practices and demonstrates the Firm’s strong commitment to the protection of client information.

The certification followed a comprehensive audit of the firm’s information systems by DEKRA that commenced in November of last year. As an ANSI-ASQ National Accreditation Board (ANAB) certification body DEKRA’s ISO 27001 certification demonstrates that the firm can recognize, evaluate, and consistently eliminate business risks at an early stage. Kutak Rock will undergo annual audits to ensure the firm is maintaining certification standards.

“Kutak Rock is justifiably proud of its attention to information security and strong commitment to protect the confidentiality of client information,” noted Information Security & Privacy Counsel Elise Dieterich. “Through this certification, we join a very select group of law firms that have demonstrated an integrated approach to data security, and will provide our clients confidence that Kutak Rock applies a high level of protection for their most sensitive information.”

ISO/IEC 27001:2013 is an information security management standard, published by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC) under the joint ISO and IEC subcommittee. ISO/IEC 27001 specifies a management system that is intended to bring information security under management control. The latest revision of the standard was published in 2013.