Washington  |  New York  |  Houston  |  Chicago  |  London  |  Paris  |  India  |  Tokyo
   
Home Company Certifications & Standards
Certifications & Standards


Minority, Woman-Owned Business

Capital Novus accounting and billing systems are DCAA Compliant.

Capital Novus is a ISO 27001-2005 & ISO 9001-2008 certified organization.

ISO 9001 (ISO 9001:2008) is now established as the most widely accepted standard for providing assurance about the quality of services a provides to its customers. As a Certified ISO 9001-2008 company, Capital Novus brings expertise to meet our quality management needs and customer requirements more efficiently and effectively, ensuring increased customer satisfaction.

ISO 27001-2005 is the highest information security certification and compliance to this standard, ensuring ‘Confidentiality’, ‘Integrity’ and ‘Availability’ of data. Being certified to ISO/IEC 27001 will help you to manage and protect your valuable information assets. ISO/IEC 27001 is a standard setting out the requirements for an information security management system (ISMS). The standard is designed to ensure the selection of adequate and proportionate security controls that protect information assets and give confidence to our customers.

Some of the key data & information security practices followed at Capital Novus include:

  • Ensure compliance with laws and regulations.
  • Process framework for the implementation and management of controls to ensure that the specific security objectives of an organization are met.
  • In-house Servers are protected using access control devices and monitored using CCTV.
  • No removable media is provided on operator workstations.
  • Every operator and Server activity is logged and monitored.
  • Network is immune to any unauthorized access/hacking through active Firewall.
  • Servers are equipped with dual high-speed CPUs and RAID.
  • Authenticated Server Access for Privileged Users only.
  • Strong Password Policy & Password Aging.
  • Inactive Session Terminations.
  • Data Partitioning with appropriate access rights.
  • User Activity Auditing.
  • No hand baggage, no printed material, no internet access or data storage media is permitted in production area.
  • Workstations do not have slots to access data through removable media.
  • Employees are trained on privacy and data security norms of the organization.
  • All employees sign a confidentiality agreement before joining the company.

    •  
 
 
© 2011 Capital Legal Solutions, LLC