Why ISO/IEC 27001 is more than a certificate for our customers

Information security is no longer a technical detail. Today, it is a key criterion when selecting industrial software. Especially when dealing with manufacturing data, process know-how, and global IT landscapes, companies need confidence that sensitive information is protected at all times.

Operations1 is certified to ISO/IEC 27001, the internationally recognized standard for information security management systems. But for us, this certification is not an end in itself. It answers a very concrete question our customers ask: Can we trust Operations1 with our data and processes?

DQS ISO IEC 27001 Certificate

What ISO/IEC 27001 really means

ISO/IEC 27001 defines requirements for a systematic, company-wide approach to information security. The focus is not on individual technical measures, but on a holistic approach:

  • clearly defined responsibilities

  • structured risk assessments

  • documented and verifiable processes

  • continuous improvement

For software providers like Operations1, this means information security is not a standalone IT project. It is an integral part of the organization, product development, and operations. The certification confirms that these principles are not only designed on paper, but embedded in day-to-day work and regularly audited by independent bodies.

Our customers have a strong awareness of information security and expect the same reliability from us. ISO 27001 certification shows that we take these requirements seriously and implement them according to a recognized standard."

‒ Marc Morone

Information Security Officer, Operations1

Marc Morone

What our customers gain from it

For our customers, ISO/IEC 27001 means one thing above all: reliability.

In practice, this means:

  • sensitive data is processed in a structured, controlled, and protected way

  • potential security risks are identified systematically and addressed early

  • processes are transparent, documented, and audit-ready

  • Operations1 is a dependable partner for industrial use

Especially in regulated or complex manufacturing environments, this provides the foundation needed for long-term collaboration.

Transparency—with the right balance

Information security depends on transparency, but also on responsibility. For this reason, we deliberately do not publish internal security details or technical protection measures.

Instead, we rely on:

  • independent certifications

  • clearly defined and established processes

  • regular internal and external reviews

This ensures that security is not just claimed, but implemented in a robust and verifiable way.

Our commitment

For Operations1, ISO/IEC 27001 certification is not a marketing message and not a one-off project. It is a basic prerequisite for collaboration on equal footing and a fixed part of our continuous improvement process.

Information security is permanently anchored in our organization—from product development and operations through to internal processes. This is how we create the foundation to use industrial software securely, at scale, and responsibly—today and in the future.