Certification Validates Firm’s Commitment to Client Data Security and Protection

connected network of 3d squares and lights

SAN FRANCISCO, Feb. 25, 2021 — BPM LLP, one of the 50 largest public accounting and advisory firms in the country, has received ISO 27001 certification for its Security Operation Center (SOC), further validating its commitment to and investment in information security and data protection for clients.  

ISO 27001 is an international standard that helps organizations manage their data security and provides a framework for implementing information security management systems to ensure the confidentiality, integrity, and availability of corporate data.  

BPM’s Security Operations Center (SOC) is an innovative, fully managed SOC-as-a-Service (SOCaaS) offering that allows clients to offload some of the burden of cybersecurity and data protection. Further, the volume and domain specificity of BPM’s SOC business allows their team to provide these services more efficiently than most in-house teams, resulting in greater cost savings for clients. 

Schellman & Company audited and certified BPM’s SOC as meeting or exceeding the ISO 27001 standards. 

“We are excited our SOC has achieved this highly regarded certification,” said Sarah A. Lynn, head of BPM’s IT Security Advisory practice and Partner in Charge of its Fairfield office. “At BPM, we take great care of our clients’ sensitive data—we will wear this certification as a badge of honor and will continue to demonstrate a rigorous information security process.” 

Behind the now-certified SOC is BPM’s IT Security & Compliance Advisory team, which has a wealth of experience preparing and onboarding clients to the BPM SOC, establishing onsite SOCs at client locations, and guiding business leaders through data security considerations and breaches.  

To receive ISO 27001 certification, an organization must be audited by an authorized third-party to verify its information security expertise. Auditors review the organization’s practices, policies and procedures to assess whether it satisfies all requirements for certification. The certification lasts three years, and organizations are reviewed annually as part of a continual audit process.   

Learn more about BPM’s IT Security Advisory Practice and BPM’s Security Operations Center. 


About BPM 

BPM LLP is one of the 50 largest public accounting and advisory firms in the country. With more than 600 professionals along the West Coast – as well as an office in Bengaluru – we help clients succeed around the world. We offer a cross-functional team approach that gives clients direct access to the best and most qualified resources.