Audit Certification


Audit Certification

ANSI/TIA-942 Compliance Certification

ANSI/TIA-942 Compliance Certification

TIA-942 is the telecommunication infrastructure standard for Data Centres. This standard however does not only cover the telecommunication part but also other important factors which lead to a robust Data Centre. The Data Centre will be reviewed for compliance in four categories:

  • Architecture
  • Electrical
  • Mechanical
  • Telecommunications

Further areas to be examined are operational management and other important aspects such as health and safety aspects.

For each of the categories the Data Centre will be categorized in four Rating levels (Rated 1 -4) as well as an overall Rating level.

The audit will provide a report of non-compliances as well as a "EPI Certificate" indicating the level of conformity to the ANSI/TIA-942 standard.

In the following two subsequent years the Data Centre will need to go through a surveillance audit. In the third year a complete (re)certification audit will be conducted to re-establish the Rating classification.

Uptime Tier to ANSI/TIA-942 Upgrade

It is common knowledge that the Uptime Institute Tier Topology guideline only addresses the electrical and mechanical infrastructure of a data centre. Although critical, data centre owners/operators have come to learn that the Uptime Institute’s Tier guidelines are missing some fundamental elements for today’s business critical environments. More and more customers are challenging their Uptime Institute Tier certified data centre operators on why they only have certified their power and cooling infrastructure and left out key elements such as security, network etc.

TIA-942 is a complete data centre standard as it also addresses site location, architectural aspects, physical security, fire safety, telecommunications, to name a few. The advantages of TIA-942 Conformity Certification far outweighs those of Uptime Institute Tier Topology Certification.

3 key reasons why you should consider upgrading from Uptime to ANSI/TIA-942:

  • Broader Scope

    The Uptime Institute Tier Topology covers only Electrical and Mechanical, whereas the TIA-942 covers the full data centre facilities (Electrical, Mechanical, Telecommunication, Architectural, Site Location, Fire Safety, Physical Security etc), which is critical for today’s mission critical data centres.

  • True Standard

    Uptime Institute Tier Topology is a guideline issued by a commercial organisation, whereas TIA-942 is a true Standard issued by an SDO (Standard Development Organisation) accredited by ANSI and applicable globally. This brings great transparency which is important for any data centre owner/operator.

  • Lower Cost

    Uptime Institute assessments are performed by Uptime Institute consultants only and known to be very high-cost whereas TIA-942 assessments are performed by qualified auditors at very completive rates.

TIA-942 is a certifiable standard. EPI is incorporated as a CB – Certification Body and is therefore qualified to certify data centres to the TIA-942 standard.

3 types of upgrade packages.

  • Uptime Institute Design Documents Certificate to ANSI/TIA-942 Design Certi­ficate
  • Uptime Institute Design Documents Certificate to ANSI/TIA-942 Facilities Certifi­cate
  • Uptime Institute Constructed Facilities Certificate to ANSI/TIA-942 Facilities Certifi­cate
  • Telecommunications

Pricing varies depending on the size and target rating level of a data centre but are often at a fraction of the cost compared to Uptime Institute’s Tier Topology certification.

Design Evaluation

Design Evaluation

The goal of Data Centre Design Evaluation Services (DDES) is to evaluate the design of your new data centre, or the extension/alteration of your existing data centre and the parameters that may affect its performance and availability. The evaluation is intended to:

  • Evaluate the design criteria to meet the objective of your business requirements
  • Pro-actively prevent possible problems and risks during construction
  • Minimise the risk factors that potentially affect the performance and availability of data once operational
  • Evaluate Data Centre Maintenance options and complexity
  • Pro-actively bring potential enhancements to the attention of the customer

The study will be conducted by data centre professionals specialising in data centre design services; addressing five main critical design areas:

  • power layout and quality
  • Pro-actively prevent possible problems and risks during construction
  • environmental factors and dimensioning such as cooling, fire protection, monitoring of the data centre
  • electromagnetic fields
  • networks
  • operational security and safety

A report on the design of the data centre will be provided indicating the findings and the potential areas for improvement with recommendations. Business needs and budget constraints will be taken into consideration aimed at pro-actively improving the data centre and minimising business risks and costs.

Design Validation

Data Centre Design Validation

The goal of the Data Centre Design Validation Services (DCDV) is to validate the design of your new or existing Data Centre and compare it for compliance to certain standards and norms such as TIA-942, SS507, ISO-24762 and others. The outcome is a report which will indicate the level of compliance and what potentially need to be addressed to ensure that an audit will go smooth and leads to certification.

This design validation review will enable you to correct parts of your design to avoid potential non-compliance with applicable standards avoiding the often very expensive construction changes or issues during an audit which would result in a potential non-compliance and therefore no certification could be obtained.

Data Centre Review

Data Centre Review

The Datacentre Compliance Review (DCR) is a thorough review of your data center in line with industry standards such as SS507, TIA-942, IEC-61000-4-8 and other norms and best practices for mission critical sites. It allows you to understand the fundamental gaps and risks in your datacenter which could lead to Hi-Availability problems, increased operating and maintenance cost. The outcome will allow you to address possible issues and areas of improvement allowing you to rectify issues before they become problems and to pro-actively budget for improvements.

The DCR service is often used by companies to plan for improvement or as an in-depth assessment as part of Business Continuity and Disaster Recovery (BC/DR) planning and implementation initiatives.

DCR is also used as a stepping stone to the DCC services which provides Certification based on international norms.

During the audit various documentation and processes will be reviewed and will also consist of a survey of the Data Centre itself and supporting facilities such as UPS Room etc. The audit reviews the following areas:

  • Data Centre location and construction
  • Electrical layout and dimensioning
  • Environmental control and monitoring
  • Fire Suppression
  • Electromagnetic Field analysis
  • Network
  • Operational Security and safety measures
  • Maintenance and Support

The output of the audit will be a concise report which will highlight the findings, potential risks and suggestions for improvement.

Customized Consultancy

Customized Consultancy

EPI can provide a wide range of customized consultancy including reviews, assessments, surveys and audits. Please fee free to contact us for specific requirements and we would be more than happy to work with you.

ISO 22301 Business Continuity Management

What is ISO 22301 ?

ISO 22301 is a global standard that specifies the requirements for a management system to protect against, reduce the likelihood of, and ensure your business recovers from disruptive incidents.

ISO 22301 is an international framework and benchmark to guide businesses in identifying potential threats to a company’s critical business functions and to build effective backup systems and processes to safeguard the interests of stakeholders.

Why ISO 22301 certification?

By obtaining ISO 22301 Certification you can prove to your stakeholders, customers and staff that you have a solid process in place for identifying potential threats and how to effectively deal with them to minimise any potential business impact.

Benefits to you

  • Assist you to identify and manage current and future threats to your business
  • Provides a proactive approach to minimizing the impact of incidents
  • Keeps critical functions up and running during times of crises
  • Assists in minimising downtime during incidents and improve recovery time
  • Electromagnetic Field analysis
  • Demonstrates resilience to customers, suppliers and for tender requests
  • Protects your reputation during crisis

Benefits to your customers

  • Reduces the likelihood of a disruption occurring that affects their business through a risk management process
  • Provides a proactive approach to minimise impact of potential incidents
  • Enhances the ability to recover following a disruption to normal operating conditions

Benefits to your staff

  • Protect staff and their welfare – ensure staff know their roles and responsibilities

SS 507 BC/DR for Service Providers

What is SS 507 ?

Better known in the market as the standard for BC/DR for Service Providers, the official title for the SS 507 standard is; Information and communications technology disaster recovery services.

This standard specifies requirements for ICT DR services, which include both those provided in-house and outsourced. It covers facilities and services capability and provides fallback and recovery support to an organisation’s ICT systems. The standard covers also the implementation, testing and execution aspects of disaster recovery. However, it does not include other aspects of business continuity management.

Why SS 507 certification?

SS 507 certification is a must have for any service provider as most business only outsource their BC/DR requirement to those providers who can substantiate their BC/DR claims with a valid SS 507 certificate.

SS 507 provides the customer of such providers a level of trust knowing that their business is well protect when it is needed the most.

Benefits to you:

  • Attract more business from organisations seeking to outsource their BC/DR services
  • Provides more clarity on your BC/DR capabilities
  • Benchmarks your facility and/or services against a well-established standard

Benefits to your customers:

  • Allow for an easier selection of a service provider which can meet your BC/DR requirements
  • Confidence that the BC/DR service provider will undergo a annual audit to ensure that the BC/DR facilities and/or services are ready when you need them

Benefits to your staff:

  • Provides confidence that BC/DR service request can meet the customers expectations
  • Provides an easy benchmark for the service requirements to be put in place based on a well-established standard

ISO 9001 Quality Management System

What is ISO 9001 ?

An ISO 9001 quality management system is a systematic and process driven approach to managing your business. It is designed to support the company in ensuring you meet the needs of your customers, whilst delivering a consistent level of quality and satisfaction.

This system has been proven to make business owners and managers feel more in control and ensure everyone within the organisation is clear about what they do, whilst having the ability and authority to resolve problems quickly and effectively.

An ISO 9001 certification can be achieved by any business of any size, in any given sector, which is looking to increase and enhance business productivity and performance.

Why ISO 9001 certification?

ISO Certification is the proof to your stakeholders, customers and staff that you keep your promises. The standard helps you achieve consistent results and continually improve the process.

Benefits to you

  • Increased profit potential and market share
  • Better utilisation of your time though improved resource management
  • Saves you spending time and money on recurring problems, with many problems being resolved permanently first-time round

Benefits to your customers

  • Proof that you provide consistent, reliable and fit for purpose solutions
  • Improve the customer / supplier relationship by responding proactively to customer feedback
  • Issues are identified and resolved quicker, in many cases without the customer even knowing

Benefits to your staff

  • Increases job security through enhanced business performance
  • Improves job satisfaction as employees are clear about what to do and how it is to be done
  • Boosts morale and motivation through improved training capabilities

ISO 20000 IT Service Management

What is ISO 20000 ?

ISO 20000 is a global standard that describes the requirements for an information technology service management (ITSM) system. The standard was developed to mirror the best practices described within the IT Infrastructure Library (ITIL) framework. ISO 20000 also supports other frameworks, such as Microsoft's Operations Framework.

ISO 20000 specifies requirements for the IT service provider to plan, establish, implement, operate, monitor, review, maintain and improve the provisioning of IT services. The requirements include the design, transition, delivery and improvement of services to fulfil agreed service requirements.

Why ISO 20000 certification?

By obtaining ISO 20000 Certification you can prove to your stakeholders, customers and staff that you run your IT services in a cost effective, reliable, consistent and efficient way.

SS 507 provides the customer of such providers a level of trust knowing that their business is well protect when it is needed the most.

Benefits to you:

  • Assures your internal and external customers that your organisation will deliver IT services at a defined level of quality.
  • Extends existing quality management system with a focus on quality IT services
  • Improved reputation, relationships, inter-working and communication with your business and customer contacts.

Benefits to your customers:

  • Reassures customers that you are able to deliver a consistent quality service
  • Reassures customers that you are continuously review and improve your service delivery
  • Proof that you are maintaining a forward thinking, business oriented and quality service approach

Benefits to your staff:

  • Assist in having a focus on the implementation of a set of integrated processes and solutions that are appropriate, suitable and effective in meeting the needs of the business processes, the customers and the users they serve.
  • Provides them with the ability to influence process and service improvements
  • Improves communication and team work across functional departments

ISO 14001 Environmental Management System

What is ISO 14001 ?

An ISO 14001 environmental management system is a systematic and process driven approach to controlling those aspects of your business that have a significant impact on the environment.

The system is proven to make business owners and managers be more aware of their environmental responsibilities, including legal and regulatory accountabilities, and being able to manage and control the associated risks.

An environmental management system can be applied to any business of any size, in any given sector, to demonstrate the company’s commitments to on-going environmental issues both on a local and national scale. More specifically it can help you reduce your waste and carbon footprint significantly, therefore lowering your environmental liability.

Why ISO 9001 certification?

By obtaining ISO 14001 Certification you can prove to your stakeholders, customers and staff that you are aware of your environmental obligations and are looking to reduce your environmental impact.

Benefits to you

  • Use the reduce, reuse and recycle approach to make tangible cost reductions as well the potential to reduce taxes and liability insurances
  • Reduce the impact of your business activities on the environment through best practice management
  • Enhance your company image and improve your green credentials within the local community and to potential investors

Benefits to your customers

  • Reassures customers who take an active interest in environmental performance that they are working with a company which promotes a shared environmental ethos
  • Proof that you are maintaining a forward thinking, environmentally aware organisation that fulfils its corporate social responsibility

Benefits to your staff

  • Increase the motivation of your environmentally conscious employees
  • Increase environmental awareness amongst the entire workforce
  • Actively reduces environmental risks and prevents incidents to both employees and the local environment

Energy and Environmental Management Systems

What is SS 564 ?

SS 564 is the green data centre standard which helps organisations to establish systems and processes necessary to improve the energy efficiency of their data centre.

SS 564 provides a recognised framework as well as a logical and consistent methodology to achieve continuous improvement for their data centre facilities. This standard is modelled after the ISO 50001 standard on energy management but is specifically tailored to meet the needs of data centres in Singapore.

The standard adopts the Plan-Do-Check-Act (PDCA) methodology, an iterative, four step problem-solving process used for continuous process improvement. The PDCA cycle forms the basis for many established management standards, which have successfully stimulated substantial, continual efficiency improvements within organisations around the world.

Why SS 564 certification?

SS 564 defines a set of performance metrics for data centres to measure their energy efficiency. These metrics provide a common benchmark to help data centres to track their performance and improvements.

Being SS 564 certified does not only assist your organisation achieving its environmental management goals but also helps to reduce cost of operations and shows your customers that you are sincere about the environment.

Benefits to you

  • Lower operating cost due to a reduction in energy used
  • Showing and exercising corporate social responsibility by contributing to the conservation of natural resources
  • Attract customers who have policies and requirements to work with other environmental and socially responsible organisations

Benefits to your customers

  • Working with a data centre who shows social responsibility
  • Lowering cost of operation by working at higher energy efficiency levels

Benefits to your staff

  • Increased employee moral knowing the organisation cares about the environment
  • Feeling ownership of environmental and social responsibility

ISO 27001 Information Security

What is ISO 27001 ?

An ISO 27001 information security management system is a systematic and pro-active approach to effectively managing risks to the security of your company’s confidential information.

The system promotes efficient management of sensitive corporate information, highlighting vulnerabilities to ensure it is adequately protected against potential threats. It encompasses people, process and IT systems.

An ISO 27001 certification can be achieved by any business of any size, in any given sector, which is looking to increase and enhance the company’s security of its data.

Why ISO 27001 certification?

Information is an asset which, like other important business assets, has a value to an organisation and consequently needs to be suitably protected.

This standard will help your company coordinate all your security efforts both electronically and physically, coherently, cost effectively and with consistency and prove to potential customers that you take the security of their personal / business information seriously.

Benefits to you

  • Cost reductions due to avoiding incidents
  • Smoother running operations as responsibilities and processes are clearly defined
  • Improved business image in the marketplace – customers have peace of mind that the company is trustworthy

Benefits to your customers

  • Working with a trustworthy provider maintains the company’s own integrity to the safeguarding of its data
  • Installs confidence further down the supply chain resulting in stronger customers / supplier relationships

Benefits to your staff

  • Having appropriate access controls in place lowers the risk of accidental exposure to employees of confidential/sensitive information
  • Reassurance that their employer is meeting data handling security guidelines
  • Defines clearly and precisely roles and responsibilities therefore job satisfaction and productivity is increased

SS 584 Multi Tier Cloud Security (MTCS)

What is SS 584 ?

SS 584 is the world’s first cloud security standard that covers multiple tiers of cloud security. It can be adopted by Cloud Service Providers (CSPs) to meet different cloud user needs for data sensitivity and business criticality.

SS 584 MTCS defines three levels of cloud security’

  • Tier 1: Designed for non-business critical data and systems with basic security control, that address security risks and threats targeting low-impact information systems. (e.g.: Web site hosting public information).
  • Tier 2: Designed for organizations that use cloud services to protect business or personal information, and run critical business data and systems in a moderate impact information system. CSPs in this tier have more stringent security controls (e.g.: Email / CRM – Customer relation management systems).
  • Tier 3: Designed for companies with specific needs and more stringent security requirements. Industry specific.

Why SS 584 certification?

SS 584 provides businesses with greater clarity on the levels of security offered by different Cloud Service Providers (CSPs). Certified CSPs will be able to spell out the levels of security that they can offer to their users, and businesses that rely on services from these CSPs will also be able to use the MTCS SS to understand and assess the cloud security they require.

Benefits to you

  • Facilitate matching of security needs between companies and cloud service providers
  • Provides more clarity on your cloud security capabilities to your customers
  • Improved quality management for security and reliability of your cloud service offering

Benefits to your customers

  • Allow for an easier selection of a CSPs who can provide matching levels of cloud security
  • Provides confidence that the cloud environment in which your customer host their business-critical applications have the appropriate levels of security

Benefits to your staff

  • Clear definition on security requirements for the provisioning of the cloud environment
  • Providing additional levels of confidence due to verification and validation by knowledgeable cloud security expert auditors to ensure the right security has been applied

SS 506 Occupational Safety and Health Management

What is SS 506 ?

SS 506 is the Singapore Standard on Occupational Safety and Health Management System and can be used for certification, registration and/or self-declaration of an organisation’s OSH management system and act as a useful guideline to provide generic assistance for establishing, implementing, maintaining or improving an OSH management system.

Why SS 506 certification?

An effective OSH management system will assure interested parties of company’s OSH performance and proper control of OSH risk; minimise injury risk; increase business productivity and achieve cost savings whilst having a positive impact on your company image. In addition, it provides a framework to ensure compliance with all regulatory requirements.

Benefits to you

  • Create and enhance a healthy and safe working environment
  • Enhance company image and brand reputation
  • Demonstrate your commitment to health and safety towards company’s stakeholders and your employees
  • Minimize injury risks to employees and liability claims against employers
  • Increase productivity & reduce insurance premiums

Benefits to your customers

  • Working with a trustworthy company who has health and safety at heart
  • Reduced risk of liability claims
  • Ensure compliance with the legal and regulatory requirements

Benefits to your staff

  • Safer work environment due to risk reduction
  • Improve staff morale knowing that the company cares about them

DCOS Audit & Certification Service

What is DCOS Audit & Certification ?

DCOS is aimed at providing the data centre investor/owner/operator with a progressive approach to data centre operations management improvement.

The DCOS® audit will benchmark the data centre maintenance and operations based on the 11 disciplines as described in the EPI Data Centre Framework. The data centre organisation can choose to be audited for all of the 11 disciplines or a subset of 1 or multiple disciplines which the organisation deems to be the most critical to its business.

Each discipline chosen will be assessed for its maturity based on the widely adopted 5-level process maturity levels.

The audit report will provide the organisation with a clear view on its current operational maturity. This will enable the organisation to further improve its processes so that its valuable human capital can be maximised to create an efficient and effective data centre operations and maintenance team.

Upon achieving the DCOS® certification, the data centre will be listed on EPI’s website, providing proper levels of confidence to its customers, both internal and external, that appropriate levels of due diligence for risk management and operational efficiency have been taken showing good corporate governance.

Follow Us: