Skip to main content
  1. Blog
  2. Article

Canonical
on 30 September 2025


The certification demonstrates alignment with cybersecurity standards that will further safeguard open source products and services for use in the most demanding enterprise environments.

Canonical is proud to announce it has achieved the ISO/IEC 27001 certification for its Information Security Management System (ISMS), following an extensive assessment by A-LIGN, a respected certification provider. This milestone highlights Canonical’s commitment to policies, processes and controls that support the confidentiality, integrity and availability of internal and customer data, supplier information, and the company’s corporate infrastructure environment.

“Achieving the ISO 27001 certification is a testament to our team’s unwavering commitment to information security,” said Stephanie Domas, CISO at Canonical. “It validates that our processes meet the highest global standards, giving our customers and partners the confidence that their data is protected with the utmost care and rigor. This isn’t a one-time achievement, but a promise to continuously strengthen our security posture as a core part of our business.” 

Robust information security for customers

ISO/IEC 27001 is among the most widely recognized and internationally accepted information security standards. 

Benefits to Canonical customers include:

  • Data security – Customers can rely on established processes and best practices to safeguard data and handle incidents.
  • Regulatory compliance – Customers can demonstrate that Canonical  is certified by an internationally recognized standard to help in their own regulatory compliance efforts. 
  • Commitment to improvement – One of the key requirements of ISO/IEC 27001 is continuous improvement. Maintaining the certification means Canonical will continue to improve its security and resilience.

An ongoing commitment

Achieving ISO 27001 certification is not a one-time event – it’s a continuous journey towards excellence. Canonical is  committed to maintaining a high standard of quality and correctness, aiming to continuously improve its  security posture by adapting to emerging threats and new regulatory requirements.

The certification also complements Canonical’s certifications for IEC 62443-4-1, which governs  cybersecurity in Industrial Automation and Control Systems (IACS), and ISO/SAE 21434 for automotive cybersecurity standards. Enterprises relying on Canonical’s open source solutions can deploy them with confidence knowing they are backed by robust and long-term-supported, open source security processes.

For more information, consult the ISO certificate available in our Trust Center.

Related posts


Luci Stanescu
1 July 2026

DirtyClone Linux kernel local privilege escalation vulnerability fixes available

Ubuntu Article

On June 25, 2026, JFrog published their research into CVE-2026-43503, referring to the vulnerability as DirtyClone. The vulnerability had previously been responsibly disclosed to the Linux kernel maintainers and the CVE record published on May 23, 2026. The vulnerability affects multiple Linux distributions, including all Ubuntu releases. ...


Luci Stanescu
1 July 2026

pedit COW kernel local privilege escalation vulnerability mitigations

Ubuntu Article

Mitigations are available for the Linux vulnerability with CVE ID CVE-2026-46331. The CVE ID was assigned on June 16 2026 and highlighted as a local privilege escalation (LPE) vulnerability on June 26, 2026. Known as “pedit COW”, this vulnerability affects multiple Linux distributions, including all Ubuntu releases starting with Bionic Be ...


seth-arnold
21 May 2026

PinTheft Linux kernel vulnerability mitigation

Ubuntu Ubuntu tech blog

A local privilege escalation (LPE) security vulnerability in the Linux kernel, codename “PinTheft,” was publicly disclosed on May 19, 2026. The vulnerability was fixed in the mainline Linux kernel tree. A proof-of-concept exploit was published along with public disclosure. This has been assigned the CVE ID CVE-2026-43494; other discoverin ...