Certifications and framework alignment

Last updated July 2, 2026

Framework alignment

Our security practices are aligned with:

  • ISO/IEC 27001:2022 — Information Security Management Systems
  • Australian Privacy Principles (APPs) under the Privacy Act 1988
  • Essential Eight (ACSC) — baseline mitigation strategies
  • OWASP Top 10 — secure application development
  • NIST Cybersecurity Framework — risk identification and management

Osher Digital does not currently hold organisational ISO 27001 certification. Our Lead Solutions Architect has direct, hands-on experience preparing for and enforcing ISO 27001 policies through successful audit cycles at a major professional services firm, and that practical experience informs how we operate day to day. The team also holds ITIL Service Management certification.

Platform certifications you inherit

For engagements on Microsoft Azure (our recommended enterprise platform), your solution benefits from Microsoft's compliance portfolio — ISO 27001, SOC 1/2/3, HIPAA, and IRAP (Australian Government) among them. We architect solutions specifically to leverage these platform-level certifications and controls.

Need the full picture for a security review? Ask us for our Data, Security & Privacy Capability Pack: [email protected].

Still need help?

Can't find what you're looking for? Get in touch with our support team.