Brownstein currently maintains ISO 27001:2013 certification, the most widely adopted, international information security standard and the highest level of security-related accreditation a law firm can achieve. This certification was achieved in early 2019 and covers information security throughout the firm and physical security at Brownstein’s core offices located in Denver and Washington, D.C., Los Angeles, Las Vegas and Santa Barbara.
ISO 27001 is an internationally recognized security standard that specifies and verifies the establishment and maturity of an organization’s Information Security Management System (ISMS). These rigorous standards documented in the firm's ISMS document exist to ensure that formal security and risk management controls are in place to protect the confidentiality, integrity and availability of sensitive company, client and personal information. Risk assessment, policy and process implementation, and both internal and independent audits are all part of the required work. The detailed certification process requires annual audits to ensure that the firm is utilizing and continuously improving best practices and procedures to secure its client and employee sensitive data and to keep pace with the ever-changing cybersecurity landscape.
Brownstein’s ISO 27001:2013 Certification (1554476-2) can be verified at https://www.schellman.com/certificate-directory and our supporting ISMS documentation is provided here. Should you require additional documentation regarding the Brownstein ISMS, please contact the firm’s chief information security officer at 303.223.1363.