JavaScript is turned off in your web browser. To take full advantage of Ribose features, please enable JavaScript and refresh the page.

Ribose receives Hong Kong’s first SOC 2 / 3 reports from Ernst & Young -- Compliant to newly released AICPA TSP 100 common criteria and CSA’s CCM

Hong Kong, 15 December 2014 – Ribose received its first Service Organization Controls (SOC) 2 and SOC 3 reports – as well as the SysTrust seal – from international auditing firm Ernst & Young (EY).

SOC 2 and 3 are widely recognized attestations, providing independent validation that companies’ internal controls comply with applicable American Institute of Certified Public Accountants’ (AICPA) Trust Services Principles and Criteria (TSP 100).

SOC 2 Type II is an internal control report regarding risks associated with organizations’ services, including detailed testing of controls. SOC 3 is intended for public consumption and includes fewer details than SOC 2.

TSP 100, newly released in 2014, supersedes TSP section 100A from 2009 and features a consolidated set of “common criteria” replacing previously separated principles: security, availability, processing integrity, and confidentiality. This standard applies to attestations after 15 December 2014.

Ribose and EY adopted the revised standard as early as permitted by the AICPA. Ribose’s SOC 2 Type II and SOC 3 reports are based on TSP 100 security and availability principles, together with controls from CSA’s newly launched Cloud Controls Matrix (CCM) 3.0.1.

In completing the attestation, Ribose received the first SOC 2 Type II report in Hong Kong; and became the first organization to receive SOC 2 / SOC 3 reports complying to both AICPA TSP 100 and CSA’s CCM. Ribose’s SOC reports are among the earliest reports utilizing AICPA’s new common criteria.

“This engagement represents a significant milestone for EY and Ribose. We successfully integrated into our existing attestation methodology these new standards and streamlined processes to achieve multiple certifications,” said Vincent Chan, Advisory Services Leader for EY Hong Kong and Macau. “Ribose chose EY as their attestation partner as we are familiar with their operating environment, and our EY professionals have extensive experience and knowledge of cloud operations and security.”

Ribose founder Ronald Tse explained, “Ribose is dedicated to helping people collaborate better; and the quality, security and reliability of our platform are paramount to achieving this goal. Our SOC 2 / 3 examinations demonstrate that we have appropriate controls in place to mitigate security and availability risks – meaning organizations faced with compliance requirements around sensitive data can fully leverage the Ribose platform.”

# # #

About Ribose

Ribose is a cloud collaboration platform that makes working together easy and fun. A forerunner in cloud security, Ribose is the world’s first cloud service provider certified to CSA STAR (CCM 3.0.1) and MTCS. It is also certified to ISO/IEC 27001, ISO/IEC 20000, CDSA CPS and SOC standards, and approved by the UK Government’s G-Cloud program for government use.

Ribose is free to use: ribose.com.

About EY

EY is a global leader in assurance, tax, transaction and advisory services. The insights and quality services we deliver help build trust and confidence in the capital markets and in economies the world over. For more information, visit ey.com.

###

 

Read More

Ribose: World’s first cloud service provider certified to Multi-Tier Cloud Security standard achieves highest Level 3 security tier

Singapore/Hong Kong, 8 December 2014 – Ribose, the world’s first cloud service provider (CSP) certified to Singapore’s Multi-Tier Cloud Security (MTCS) program, has recently achieved the highest possible security tier: Level 3.

Initiated by the Infocomm Development Authority of Singapore (IDA) and launched by SPRING Singapore, the MTCS standard (SS 584:2013) specifies stringent security and operational requirements for CSPs, encouraging adoption of sound risk management and security practices. MTCS Certification specifies three tiers of security levels, with Level 3 being the highest. The Singapore Accreditation Council (SAC) has recently launched an accreditation program for MTCS Certification.

Ribose was the first CSP worldwide to achieve MTCS certification in June 2014 with a security tier of Level 1. Following a thorough evaluation by BSI (British Standards Institution), a participating Certification Body for the MTCS standard, Ribose has upgraded its certification to the highest security tier, Level 3 – indicating its platform is suitable for running high-impact workloads, serving business- and mission-critical purposes, and hosting sensitive information as well as highly confidential business data.

“Ribose is proud to be the first Software-as-a-Service (Saas) provider certified to the MTCS standard, and the first SaaS platform to achieve the coveted Level 3 security tier,” explained Ronald Tse, founder of Ribose.  “This is a major milestone for Ribose, confirming our platform’s government-approved security standards for handling users’ highly sensitive and confidential data.”

Owen Xu, General Manager of BSI Singapore, commented, “BSI takes pride in employing the most stringent auditing standards in the industry. With over 60,000 clients around the globe, our experts have audited many of the world’s largest companies and government organizations that require top-notch security. By achieving MTCS at Level 3, Ribose has demonstrated its platform’s security is indeed world-class.”

# # #

About Ribose

Ribose is a cloud collaboration platform that makes working together easy and fun. A forerunner in cloud security, Ribose is the world’s first cloud service provider certified to CSA STAR (CCM 3.0.1) and MTCS. It is also certified to ISO/IEC 27001, ISO/IEC 20000 and CDSA CPS standards, and approved by the UK Government’s G-Cloud program for government use.

Ribose is free to use: ribose.com.

About BSI

BSI (British Standards Institution) helps businesses turn best practices into habits of excellence. As the world’s first national standards body and a founding member of ISO, BSI’s standards inspire excellence across the globe: bsigroup.com.

###

Read More

Ribose first to achieve CSA STAR Certification with new CCM 3.0.1 cloud security standard

Hong Kong, 17 November 2014 – Ribose has become the world’s first cloud service provider (CSP) to achieve STAR Certification from the Cloud Security Alliance (CSA) compliant to the latest Cloud Controls Matrix (CCM) 3.0.1 cloud security standard. Ribose is also the first CSP to have achieved two consecutive STAR Gold Certifications, indicating the maturity level of its security controls.

STAR Certification, the internationally-recognized cloud security certification program jointly developed by CSA and BSI, specifies comprehensive and stringent cloud security requirements on CSPs. Ribose’s latest certification was awarded by BSI, and Ribose is currently the only CSP worldwide with STAR Certification compliant to the CCM 3 family of cloud security standards.

“Users depend on the Ribose platform to work and innovate with others. By achieving compliance to the most comprehensive cloud security standard to date, users can rest assured relying on Ribose for their success,” noted Ronald Tse, founder of Ribose. “Receiving two consecutive Gold ratings testifies to our commitment in protecting users’ information and privacy to the greatest extent.”

David Horlock, Asia Pacific Managing Director of BSI, remarked, “In today’s connected world, cloud security and privacy are more important than ever. In becoming the world’s first organization certified to the latest cloud security standard CCM 3.0.1, Ribose has again demonstrated its commitment to protecting its users’ data by adopting world-class best practice in cloud security.”

“Cloud security is an ongoing matter, and CSA continuously updates the CCM and the STAR Certification program to address the latest concerns. As a pioneer in cloud security, Ribose is leading the industry by certifying to the CCM 3.0.1 cloud security standard, reinforcing its commitment to providing a safe, secure collaboration platform,” explained Jim Reavis, CEO of CSA.

Aloysius Cheang, Standards Secretariat and Managing Director APAC of CSA, said, “CCM 3.0.1 represents over a year of our work in addressing the latest cloud security concerns and industry best practices. In certifying to the latest cloud security standard, Ribose gives its users confidence that their information is well-protected.”

# # #

About Ribose

Ribose is a cloud collaboration platform that makes working together easy and fun. A forerunner in cloud security, Ribose is the world’s first cloud service provider certified to CSA STAR using CCM 3 and MTCS. It is also certified to ISO/IEC 27001, ISO/IEC 20000-1 and CDSA CPS standards, and approved by the UK Government’s G-Cloud program for government use.

Ribose is free to use: ribose.com.

About BSI

BSI (British Standards Institution) helps businesses turn best practices into habits of excellence. As the world’s first national standards body and a founding member of ISO, BSI’s standards inspire excellence across the globe: bsigroup.com.

About CSA

The Cloud Security Alliance is a not-for-profit organization led by a broad industry coalition. Dedicated to promote the use of best practices for providing security assurance within Cloud Computing, CSA also provides education on the uses of Cloud Computing to help secure all other forms of computing: cloudsecurityalliance.org­­.

###

 

Read More

Ribose becomes world’s first casual collaboration platform to achieve ISO/IEC 20000 certification

– Certified to international standard for information technology service management –

Hong Kong, 10 November 2014 – Ribose has become the world’s first casual collaboration platform to achieve certification to the ISO/IEC 20000-1:2011 international standard for information technology service management (ITSM).

Based on the IT infrastructure library (ITIL®) best practice framework, ISO/IEC 20000-1 specifies requirements for planning, establishing, implementing, operating, monitoring, reviewing, maintaining and improving services management systems. The standard ensures companies can achieve evidence-based benchmarks to continuously improve service delivery.

Ribose’s certification is awarded by BSI, the originator of the ISO/IEC 20000-1 standard and its predecessor, BS 15000, accredited by ANAB (ANSI-ASQ National Accreditation Board), and recognized by the official ISO/IEC 20000 IT Service Management Certification Scheme created by itSMF (the IT Service Management Forum) and operated by the APM Group.

Ribose founder Ronald Tse commented, “To achieve Ribose’s mission of helping people work together more efficiently and effectively, we are committed to maintaining and improving our service delivery processes. Achieving ISO/IEC 20000-1 certification is independent verification of our availability, service process quality and customer responsiveness. It clearly demonstrates that Ribose has implemented industry best practices, and continuously monitors and improves the quality of our service.”

“Ribose’s accreditations and certifications stand as undisputable proof that world-class security, availability and service management are no longer limited to enterprise cloud users,” concluded Tse. “The Ribose platform brings these benefits to everyone, completely free of charge.”

According to Emmanuel Herve, Managing Director of BSI Hong Kong, “Evidence-based service management is the key to keeping customers happy. Previously, services certified to ISO/IEC 20000 standards were limited to high-paying corporate customers. However, Ribose has demonstrated that well-managed, secure cloud collaboration platforms are no longer the sole domain of enterprise users, providing its users with enterprise-grade service management and security.”

About Ribose

Ribose is a cloud collaboration platform that makes working together easy and fun. A forerunner in cloud security, Ribose is the world’s first cloud service provider certified to CSA STAR using CCM v3 and MTCS. It is also certified to ISO/IEC 27001, ISO/IEC 20000-1 and CDSA CPS standards, and approved by the UK Government’s G-Cloud program for government use.

Ribose is free to use: ribose.com.

About BSI

BSI (British Standards Institution) helps businesses turn best practices into habits of excellence. As the world’s first national standards body and a founding member of ISO, BSI’s standards inspire excellence across the globe: bsigroup.com.

###

 

Read More

Ribose committed to health and safety with OHSAS 18001:2007 certification

Hong Kong, 27 October 2014 – Ribose has achieved certification to the OHSAS 18001:2007 international standard for occupational health and safety management systems. OHSAS 18001:2007 promotes healthy and safe working environments by setting out international best practices – helping organizations manage and control risks, and continuously improve performance.

Ribose’s OHSAS 18001 certification was awarded by BSI (British Standards Institution) – who established the British Standard BS OHSAS 18001:2007 – after validation of Ribose’s applications, systems, processes and services by an independent accredited auditor.

“Our staff are the heart of our company, and their wellbeing is our top priority,” explained Ribose founder Ronald Tse. “Achieving OHSAS 18001 certification demonstrates the sincerity of Ribose’s commitment to health and safety, and provides us with a framework for constant improvement.”

“Offices tend to be low-risk environments and health and safety risks are often overlooked in the technology industry – however repetitive strain injuries and back injuries are quite common,” Tse noted. “Having formal health and safety measures in place increases our efficiency and reduces costs in the long run by avoiding accidents, reducing illness and improving staff motivation. Implementing OHSAS 18001 standards has allowed us to thoroughly consider health and safety issues in a holistic way across the entire organization.”

Emmanuel Herve, Managing Director of BSI Hong Kong, commented, “Many people associate construction and manufacturing with high risks, but wellness and safety considerations apply to all industries – including office-based environments. By achieving OHSAS 18001 certification, Ribose is taking responsibility for the wellbeing of its staff and customers, setting a robust example for the technology industry.”

###

About Ribose

Ribose is a cloud collaboration platform that makes working together easy and fun. A forerunner in cloud security, Ribose is the world’s first cloud service provider certified to CSA STAR using CCM v3 and MTCS. It is also certified to ISO/IEC 27001 and CDSA CPS standards, and approved by the UK Government’s G-Cloud program for government use.

Ribose is free to use: ribose.com.

About BSI

BSI (British Standards Institution) helps businesses turn best practices into habits of excellence. As the world’s first national standards body and a founding member of ISO, BSI’s standards inspire excellence across the globe: bsigroup.com.

###

 

Read More

Get Started

Getting Started