Company’s 10th Consecutive Year of Leading the Region with Effective Compliance and Control Strategy
Newtown, PA – March 2, 2017 – EPAM Systems, Inc. (NYSE: EPAM), a leading global provider of product development and software engineering solutions, today announced that its development centers in Belarus, Bulgaria, China, Czech Republic, Hungary, Kazakhstan, Poland, Russia, and Ukraine have been successfully reassessed for the International Standard on Assurance Engagements (ISAE) 3402 Type 2 certification. This certification demonstrates proof of a sustained, effective global control mechanism. The assurance report, issued by Deloitte Auditing and Consulting Ltd, was the result of a comprehensive, four-month audit and included controls over information security, resource strategy and planning, information systems operations, database and application systems implementation and maintenance, and software and hardware support.
The ISAE 3402 Type 2 (formerly SAS 70 Type II) was designed specifically to address customer’s requirements that service organizations demonstrate that they have adequate internal control systems to protect data and sensitive information belonging to the customers.
“These standards deliver transparency to our customers, helping strengthen their trust in EPAM, giving us a true competitive advantage. We believe we are the only service provider with multiple delivery centers, across nine countries, that are ISAE 3402 Type 2 certified, which means that we are compliant with the most rigorous standards set for a service organization’s internal controls,” said Yuriy Goliyad, Head of Global Operations, EPAM. “Our successful completion of this audit report, for the 10th consecutive year, demonstrates our continued commitment to protecting our customer’s sensitive data through the operational excellence of our delivery centers.”
In today’s global economy, customers need to know that any service provider they work with has sufficient controls and safeguards in place. Successful completion of the ISAE 3402 Type 2 audit can help distinguish providers as the report assures customers that the certified service organization has appropriate controls in place.
“This certification, along with our ISO 27001:2013, CMMI, SOX and ISO 9001, is further evidence of our continued investment in ensuring our customer’s security. This is part of our very robust controls and compliance program, which we’ve invested in from day one, to build transparency and aggressively decrease risk for our customers engaged in strategic delivery programs,” continued Goliyad.
The ISAE 3402 Type 2 is widely recognized and represents that a service organization has successfully undergone an in-depth audit of their internal controls. It was developed by the American Institute of Certified Public Accountants (AICPA) to provide an international assurance standard on the controls at a service organization that are likely to impact or be part of the user organization’s system of internal control over financial reporting.
View the full list of EPAM’s Audit Certifications here.
About EPAM Systems
Since 1993, EPAM Systems, Inc. (NYSE: EPAM), has leveraged its core engineering expertise to become a leading global product development and digital platform engineering services company. Through its ‘Engineering DNA’ and innovative strategy, consulting, and design capabilities, EPAM works in collaboration with its customers to deliver innovative solutions that turn complex business challenges into real business opportunities. EPAM’s global teams serve customers in over 25 countries across North America, Europe, Asia and Australia. EPAM is a recognized market leader among independent research agencies and was ranked #8 in FORBES 25 Fastest Growing Public Tech Companies, as a top information technology services company on FORTUNE’S 100 Fastest Growing Companies, and as a top UK Digital Design & Build Agency.
This press release includes statements which may constitute forward-looking statements made pursuant to the safe harbor provisions of the Private Securities Litigation Reform Act of 1995, the accuracy of which are necessarily subject to risks, uncertainties, and assumptions as to future events that may not prove to be accurate. Factors that could cause actual results to differ materially from those expressed or implied include general economic conditions and the factors discussed in our most recent Annual Report on Form 10-K and other filings with the Securities and Exchange Commission. EPAM undertakes no obligation to update or revise any forward-looking statements, whether as a result of new information, future events, or otherwise, except as may be required under applicable securities law.