Skip to main content

Your submission was sent successfully! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates from Canonical and upcoming events where you can meet our team.Close

Thank you for contacting us. A member of our team will be in touch shortly. Close

An error occurred while submitting your form. Please try again or file a bug report. Close

  1. Blog
  2. Article

Canonical
on 30 September 2025


The certification demonstrates alignment with cybersecurity standards that will further safeguard open source products and services for use in the most demanding enterprise environments.

Canonical is proud to announce it has achieved the ISO/IEC 27001 certification for its Information Security Management System (ISMS), following an extensive assessment by A-LIGN, a respected certification provider. This milestone highlights Canonical’s commitment to policies, processes and controls that support the confidentiality, integrity and availability of internal and customer data, supplier information, and the company’s corporate infrastructure environment.

“Achieving the ISO 27001 certification is a testament to our team’s unwavering commitment to information security,” said Stephanie Domas, CISO at Canonical. “It validates that our processes meet the highest global standards, giving our customers and partners the confidence that their data is protected with the utmost care and rigor. This isn’t a one-time achievement, but a promise to continuously strengthen our security posture as a core part of our business.” 

Robust information security for customers

ISO/IEC 27001 is among the most widely recognized and internationally accepted information security standards. 

Benefits to Canonical customers include:

  • Data security – Customers can rely on established processes and best practices to safeguard data and handle incidents.
  • Regulatory compliance – Customers can demonstrate that Canonical  is certified by an internationally recognized standard to help in their own regulatory compliance efforts. 
  • Commitment to improvement – One of the key requirements of ISO/IEC 27001 is continuous improvement. Maintaining the certification means Canonical will continue to improve its security and resilience.

An ongoing commitment

Achieving ISO 27001 certification is not a one-time event – it’s a continuous journey towards excellence. Canonical is  committed to maintaining a high standard of quality and correctness, aiming to continuously improve its  security posture by adapting to emerging threats and new regulatory requirements.

The certification also complements Canonical’s certifications for IEC 62443-4-1, which governs  cybersecurity in Industrial Automation and Control Systems (IACS), and ISO/SAE 21434 for automotive cybersecurity standards. Enterprises relying on Canonical’s open source solutions can deploy them with confidence knowing they are backed by robust and long-term-supported, open source security processes.

For more information, consult the ISO certificate available in our Trust Center.

Related posts


Stephanie Domas
11 August 2025

A CISO’s guide to Application Security best practices 

Hardening Article

Effective AppSec is not a one-time fix but a continuous journey across every facet of your application’s lifecycle. By embracing a Secure Software Development Lifecycle (SSDLC) from the outset, diligently uncovering potential risks, and mastering your cybersecurity fundamentals, you lay a robust foundation for resilient applications. ...


Stephanie Domas
24 September 2025

Beyond ‘whack-a-mole’ and insecticide

Ubuntu Article

Designing a new, robust, sustainable, and truly holistic approach to cybersecurity Talk to any cybersecurity expert or IT security manager, and they’ll tell you they’re sick of alerts and issues. For a while now, the industry has slowly been realizing that there’s a better way to improve cybersecurity and resolve security issues in IT wit ...


Carlos Bravo
28 August 2025

Ubuntu Pro Minimal 22.04 LTS with CIS hardening is now generally available on AWS

Canonical announcements Article

August 28, 2025 – We are excited to announce the general availability of Ubuntu Pro Minimal 22.04 LTS with CIS hardening, a new variant of Ubuntu designed for organizations that require tight security controls, minimal attack surface, and out-of-the-box compliance. This new offering combines the efficiency of Minimal Ubuntu with the enter ...