Assurance Mark SRS Captive Insurance

SRS Achieves ISO/IEC 27001 Certification Emphasizing Its Commitment to Information Security Management Excellence

March 26, 2024

Concord, MA, March 26th, 2024 – Strategic Risk Solutions (SRS), the world’s largest independent insurance company manager, today announced that it has acquired ISO/IEC 27001 Certification, supporting its long-standing allegiance to providing its clients with the utmost security in the safety and privacy of their data.

ISO certification is an internationally recognized credential that validates a business’ fulfillment of requirements that relate to the security of information.

“SRS takes its data privacy and protection extremely seriously because of the nature of our business in dealing with a diverse range of clients from small entities to large multi-national corporations,” said Trung Khuu, SRS Director. “ISO/IEC 27001 focuses on information security management systems and it covers our people, procedures we have in place, and the technology we use to service our clients.”

“This certification exemplifies our commitment to information security management excellence for our clients’ data, as well as to operational merit, as this project involved a significant time and financial commitment of SRS,” noted Brady Young, SRS CEO.  “SRS is the only captive manager that has both an ISO/IEC 27001 certification for our information security management systems, and a SOC 1 ICFR Integrated Type 2 Report prepared in accordance with AICPA SSAE 18 and IAASB ISAE 3402 standards for the suitability of the design and operating effectiveness of its controls on its insurance management systems.”

SRS was fully audited by the third-party organization, BSI, the business improvement and standards company. Achieving this ISO/IEC 27001 certification included a comprehensive assessment of SRS’ information security management practices, policies, and controls. This certificate demonstrates SRS’ conformity to the quality process standards set forth by ISO.

David Mudd, Global Head of Digital Trust, Assurance at BSI said “The global digital landscape is changing, with core business practices now increasingly digitally reliant. Trust in the ability to handle sensitive data securely has become a key factor in business success as the considerations in this area escalate. BSI is proud to be a trusted partner as organizations respond to this."

Mr. Mudd continued, “This certification for Information Security demonstrates SRS’s commitment to excellence in information security management and its dedication to establishing digital trust with its clients and stakeholders. The certification required input from all of SRS’s employees driven by the leadership team. The team should be very proud of this achievement. Congratulations all.”

Standards for ISO certification is defined by the International Standards Organization which is a non-governmental organization that determines specifications for products, services, and systems for quality and efficiency. Having this certification verifies the safety measures SRS has put into place to defend against cyber-attacks, as well as more common threats, such as accidental breaches or human error. Approximately 30,000 businesses worldwide are ISO certified. SRS is also SOC certified which guides the establishment of controls in the proper placement.

To learn more about SRS please visit our website at

About Strategic Risk Solutions:
SRS is the world’s largest independent insurance company manager. With over 25 years of experience, SRS provides management and consulting services to a wide range of insurance company entities, from single parent captives to complex commercial insurers and reinsurers. SRS has operations in the United States, Canada, Europe, Barbados, Bermuda, Cayman Islands, Latin America, and South Africa.

For media inquiries, please contact:
Sandra St. Onge

linkedin facebook pinterest youtube rss twitter instagram facebook-blank rss-blank linkedin-blank pinterest youtube twitter instagram