C5 certification: ServiceNow complies with the BSI security standards for e-government

ServiceNow, the technology leader in digital workflows, can now meet the cloud service security requirements compiled by the Federal Information Security Agency (BSI) in the Cloud Computing Compliance Standard Catalog (C5). This standard (PDF) includes the most important security requirements for cloud service providers.

By creating the C5 standard, BSI removed the main obstacle to e-government, because it is now clear that it is almost impossible to think of the digitization of government services without using cloud services. C5 certification makes it easier for companies in the private and public sectors to understand various IT security services. In this case, ServiceNow and Now Platform together provide the possibility to integrate the services of multiple authorized agencies through standardized workflows.

“BSI C5 certification can help our customers assess how to comply with laws and regulations and their own guidelines based on the ServiceNow platform, and how to reliably avoid related threat situations,” explained Detlef Krause, General Manager and Regional Vice President of Germany at ServiceNow. In this way, they can advance digital transformation faster with ServiceNow. “We want to enable as many customers as possible to effectively use our digital workflow, thereby reducing the workload.” Klaus said.

The standards prepared by BSI in C5 include the relevant regulations of the Cloud Security Alliance (CSA), the American Institute of Certified Public Accountants (AICPA)-two organizations located in the United States-French National Safety Supervision and Management System Information (ANSSI) and the international standard ISO/IEC27001 . Therefore, BSI C5 provides one of the most comprehensive cloud service security and quality standards catalogs. It covers almost all areas of the cloud environment. These include, for example, access control, change management, asset management, business continuity, monitoring and recording, backup and restore, and supplier management.

Thomas Grziwa, IT Manager of the City of Hanau, said: “Within the framework of the German Online Access Law, our goal is to provide our citizens with quality services while promoting the digitization of our own processes.” It is more than just providing online forms via the Internet. .

The city of Hanau hopes to create a truly digital management organization in which as many processes as possible are run digitally and rely on Now Platform. “We are very pleased that ServiceNow has obtained the BSI C5 certificate. We rely on reliable and transparent partners. These partners are clearly committed to information security and respond to the special challenges brought by public management and other regulated fields, which can be fair.

Carla Arend, IDC European Cloud Research Chief Analyst, said: “Security, compliance and data protection are still one of the biggest challenges when the cloud is introduced in Germany. About 65% of German organizations will comply with regulations as working in a multi-cloud environment. The top priority.

This is exactly what can be guaranteed with Now Platform. The two ServiceNow data centers in Düsseldorf and Frankfurt, together with the C5 certification, set standards for authorities whose data inventories are strictly regulated. Since 2018, two German ServiceNow data centers with advanced high-availability architecture have been online.