Brightly Bolsters its Security with New Cyber Security Officer and SOC 2 Compliance
CARY, N.C.--(BUSINESS WIRE)--Brightly Software, the global leader in intelligent asset management solutions, recently appointed Sam Negron as its new Cyber Security Officer in a strategic move to reinforce its global security practice.
Sam Negron brings a wealth of experience from his 12-year tenure at Siemens, where he served as the Chief Security Officer for Enlighted, a sister company to Brightly in the Smart Infrastructure business. During his tenure, Sam played a pivotal role in building Enlighted's security program from the ground up, and his previous contributions within Siemens Technology have been instrumental in establishing a US-based security team dedicated to cutting-edge research, penetration testing, and comprehensive threat assessments.
"As Brightly charts the future of operational intelligence with our clients, the integrity of data is critical to our decision-making process," remarked Kent Norton, chief technology officer at Brightly. "We remain committed to substantial investments in data security to give our clients the assurance that we are protecting their data properly."
“We’re keeping a strong pulse on how our clients’ data protection and security needs are evolving — and we’re dedicated to meeting those needs in all aspects of the business,” said Sam Negron, Brightly’s chief security officer.
Brightly has also achieved SOC 2 compliance, a significant milestone in its ongoing pledge to safeguard customer data and enhance security practices. SOC 2, developed by the American Institute of CPAs (AICPA), sets the gold standard for service organizations' data management, focusing on trust services criteria such as security, availability, processing integrity, confidentiality, and privacy.
Brightly's commitment to security extends to internal investments as well, including increased third-party testing, auditing, and plans for additional security personnel. The company has developed a robust Information Security Program based on NIST 800-53 and ISO/IEC 27001 standards, aligning with industry best practices. These policies and procedures ensure that sensitive information is kept confidential, intact, and available to both clients and employees, all while complying with information security and privacy laws.