TX-RAMP: D2L’s Security Compliance in Texas
D2L Brightspace has Level 2 certification for TX-RAMP, a new standard of security for cloud-based services that operate in the state.
D2L Brightspace has achieved Level 2 certification for the Texas Risk and Authorization Management Program, or TX-RAMP.
TX-RAMP is a state risk and authorization management program developed and managed by the Texas Department of Information Resources (DIR). The program provides a standardized approach to security assessment, authorization, and continuous monitoring of cloud computing services used by Texas state agencies, including public higher education institutions.
Authorization and certification under TX-RAMP requires cloud computing services to conform to a subset of the NIST 800-53 cybersecurity controls.
D2L and Security
At D2L, we take our responsibility to protect the confidentiality, availability and integrity of data very seriously. We:
- Systematically evaluate our information security risks, taking into account the impact of company threats and vulnerabilities
- Design and implement a comprehensive suite of information security controls and other forms of risk management to address company and architecture security risks
- Adopt an overarching management process to ensure that the information security controls meet our information security needs on an ongoing basis
D2L does currently hold certifications for compliance with ISO/IEC 27001, ISO/IEC 27017, ISO/IEC 27018, and privacy certification ISO/IEC 27701, and we get SOC (Service Organization Control) 1® Type II & SOC 2® Type II attestation reports issued by an independent and qualified Certified Public Accountant (CPA) firm annually.