ProcessUnity Achieves ISO/IEC 27001 Certification for Information Security Management Controls

2 minute read

October 2023

Leader in helping organizations manage third-party risk verifies its data security practices with compliance for critical industry standards

BOSTON & DENVER, Oct. 24, 2023 ProcessUnity provider of comprehensive end-to-end third-party risk management and cybersecurity solutions to leading enterprises, today announced the company has achieved its ISO/IEC 27001 certification. This internationally accepted third-party certification demonstrates that ProcessUnity is committed to, capable of and has implemented practices to manage all assets securely and safely. This accomplishment, in addition to their continued preservation of SOC II compliance, further corroborates that ProcessUnity remains committed to maintaining the highest security standards as an organization.

“Achieving ISO/IEC 27001 is a demanding process that demonstrates our dedication to holistic data security; our own company data, as well as that of our customers and stakeholders,” said Derek Borgert, Chief Technical Officer at ProcessUnity. “Mature risk management requires intentional and continuous Information Security practices. ProcessUnity is committed to identifying and tracking our risks, controls, and policies to ensure that we continue to provide the most intuitive, scalable, and secure risk solutions on the market.”

ISO/IEC 27001 helps organizations become risk-aware and proactively identify and address weaknesses in their information security processes. By establishing an Information Security Management System (ISMS) to manage risks related to the security of data owned or handled by the company, ProcessUnity is markedly reducing its attack surface while also enhancing response capabilities to evolving cybersecurity risks. As a component to certification, the company has also incorporated specific protections related to how data entrusted to the company by third parties is handled to ensure that these assets maintain their confidentiality, integrity and availability.

ProcessUnity empowers companies to address today’s most critical business risks: third-party and cyber. Uniquely serving both customers and third parties, the company delivers a single solution for program workflow, validated vendor assessment data and artificial intelligence that safeguards critical assets while significantly reducing program costs.

To learn more about ProcessUnity, please visit:

About ProcessUnity

ProcessUnity provides leading enterprises with comprehensive end-to-end third-party risk management and cybersecurity solutions. Fueled by the world’s largest cyber risk exchange database, best-in-class workflow software, artificial intelligence, predictive analytics, and threat intelligence, ProcessUnity enables organizations to quickly identify security gaps, reduce vendor onboarding and offboarding time, and proactively mitigate first- and third-party risks. As a result, organizations can more effectively safeguard their critical assets while lowering program costs. ProcessUnity is trusted by major brands around the globe and is backed by Marlin Equity Partners. The company acquired CyberGRX in June 2023. Learn more at and

Related Articles

About Us

ProcessUnity is a leading provider of cloud-based applications for risk and compliance management. The company’s software as a service (SaaS) platform gives organizations the control to assess, measure, and mitigate risk and to ensure the optimal performance of key business processes. ProcessUnity’s flagship solution, ProcessUnity Vendor Risk Management, protects companies and their brands by reducing risks from third-party vendors and suppliers. ProcessUnity helps customers effectively and efficiently assess and monitor both new and existing vendors – from initial due diligence and onboarding through termination. Headquartered outside of Boston, Massachusetts, ProcessUnity is used by the world’s leading financial service firms and commercial enterprises. For more information, visit