Skip to main content
  • About CIRA

CIRA achieves ISO 27001 recertification

By Steve Dominey

CIRA is proud to announce it has achieved recertification to ISO/IEC 27001:2022, an internationally recognized standard for managing information security and risk.

The recertification covers information security related to the managed services supporting the CIRA Registry system, Domain Name System (DNS) services and the CIRA XDR product, including supporting operations and infrastructure, the protection of client and organizational information, development processes, product source code and related assets.

“As technology evolves, maintaining trust is becoming increasingly challenging as risks become more complex, interconnected and visible to customers, partners and regulators,” said Jason Gallaugher, Chief Technology and Security Officer at CIRA. “ISO 27001 is a clear signal of trust, and achieving this certification reaffirms CIRA’s commitment to protecting our information, managing risk and continually evolving our security posture.”

Independent audit highlights “noteworthy efforts”

An independent expert in assurance and risk management completed the full recertification audit of CIRA, noting zero non-conformities and multiple “noteworthy efforts,” including:

  • Thorough and innovative monitoring methods to protect systems
  • Mature, well-defined and maintained software development lifecycle and processes
  • Meticulously maintained ISMS, policies, standards and process documentation

“Our recertification reflects the commitment of everyone at CIRA,” said Gallaugher. “It demonstrates that our people, processes and technology continue to meet the highest international standards so our customers, partners and Canadians can have confidence that our core technology, infrastructure, data and platforms are safe, stable and secure.”

CIRA plays a critical role in supporting Canada’s sovereign internet infrastructure. From managing the .CA domain and operating globally distributed DNS and registry services to serving as a trusted cybersecurity partner to organizations across Canada, the organization holds itself to the highest standards of security, reliability and trust.

Learn more about CIRA’s robust legal framework and policies here

About the author
Steve Dominey

Related news

SAD DNS: the return of DNS Cache Poisoning

SAD DNS: the return of DNS Cache Poisoning

Read
Blog
What is the CyberSecure Canada Certification?

What is the CyberSecure Canada Certification?

Read
Blog
Imagine an IXP in the Arctic

Imagine an IXP in the Arctic

Read
Blog
93% of authoritative DNS servers for .CA domains failed to answer a query at least once during a six month research study

93% of authoritative DNS servers for .CA domains failed to answer a query at least once during a six month research study

Read
Blog
Building a stronger national Internet part 2 - The case for a national DNS

Building a stronger national Internet part 2 - The case for a national DNS

Read
Blog
Akamai authoritative DNS experiences an outage

Akamai authoritative DNS experiences an outage

Read
Blog
Advancing the conversation on digital sovereignty at <i>Canadians Connected: Winnipeg</i>

Advancing the conversation on digital sovereignty at Canadians Connected: Winnipeg

Read
Event
<i>Virtual Member Meetup</i>: a fun new way to bring our membership community together

Virtual Member Meetup: a fun new way to bring our membership community together

Read
Event
CIRA and ISED sign new agreement to formalize working relationship

CIRA and ISED sign new agreement to formalize working relationship

Read
Blog
Navigating cybersecurity in a time of uncertainty at <i>Canadians Connected: Toronto</i>

Navigating cybersecurity in a time of uncertainty at Canadians Connected: Toronto

Read
Blog
Navigating cybersecurity in a time of uncertainty at <i>Canadians Connected: Toronto</i>

Navigating cybersecurity in a time of uncertainty at Canadians Connected: Toronto

Read
Event
Stay tuned

See more news

Read
{( translate(state.status) )}