Certifications
- Overview|
- We Are Different|
- Management|
- Partnerships|
- Certifications
We are constantly updating and upgrading ourselves, in an effort to serve you better. We provide the highest importance to safeguarding client IP and assets entrusted to us. The industry certifications below affirm our commitment to maintaining the highest levels of service quality and confidentiality in our relationships.
CMMi 3 Silicus was successfully assessed for CMMi 3 ver 1.2 certification in 2007. CMMI is a process improvement approach that provides organizations with the essential elements of effective processes that ultimately improve their performance. At level 3, Silicus processes are assessed as "Defined", with the following characteristics:
"It is characteristic of processes at this level that there are sets of defined and documented standard processes established and subject to some degree of improvement over time. These standard processes are in place (i.e., they are the AS-IS processes) and used to establish consistency of process performance across the organization." We aim to get certified at the highest level, CMMi 5, in the next couple of years.
ISO 9001 The ISO 9000 family of standards relate to quality management systems and are designed to help organizations ensure they meet the needs of clients and other stakeholders.
Silicus is ISO 9001:2008 certified, which means we have satisfied all requirements related to our internal sites, infrastructure, functions, services and processes.
ISO 27001 ISO/IEC 27001 formally specifies a management system that is intended to bring information security under explicit management control. An ISO 27001 certified implies that the Silicus management is committed to securing confidential and IP related information of clients by systematically examining the organization's information security risks, taking account of the threats, vulnerabilities and impacts. We will design and implement a coherent and comprehensive suite of information security controls and/or other forms of risk treatment (such as risk avoidance or risk transfer) to address those risks that are deemed unacceptable. Finally, we have adopted an overarching management process to ensure that the information security controls continue to meet the organization's information security needs on an ongoing basis.
PCI DSS The PCI DSS is a multifaceted security standard that includes requirements for security management, policies, procedures, network architecture, software design and other critical protective measures. This comprehensive standard is intended to help organizations proactively protect client account data.