C Spire logo with a blue stylized C symbol

Assurance & certifications

Cybersecurity Compliance Services

C Spire delivers comprehensive cybersecurity compliance services built on industry-leading best practices and rigorous, compliance-driven operational standards. Across our Managed and Cloud Services—from internal control frameworks to the design, operation, and maintenance of our data centers—we maintain a strong security posture validated by independent governance and compliance organizations. Our cybersecurity compliance services help organizations meet regulatory requirements, reduce risk, and demonstrate trust through recognized assurances and certifications.

Certified IT Service Management

ISO 20000 Certification Badge

ISO 20000 Certified IT Service Management

As part of our cybersecurity compliance services, C Spire is ISO 20000 certified, the internationally recognized standard for Information Technology Service Management (ITSM) based on the ITIL® framework.

ISO 20000 defines the requirements for a service provider to effectively plan, implement, operate, secure, monitor, review, maintain, and continually improve its Service Management System. This certification validates our ability to design, transition, deliver, and enhance services that meet defined service and security requirements—while aligning IT operations with compliance and governance objectives.

C Spire is part of an elite group of organizations certified to the ISO 20000 standard, demonstrating proven experience implementing ITIL best practices at scale.

SOC 2 AICPA Certification Badge

SOC 1 and SOC 2 Type II Compliance

C Spire's cybersecurity compliance services are further validated through annual independent third-party audits, including:

  • SSAE 18 SOC 1 Type II
  • AT 101 SOC 2 Type II

These audits provide assurance that our controls are appropriately designed and operating effectively over time.

  • SOC 1 Type II includes onsite testing of IT General Controls at our data center locations.
  • SOC 2 Type II includes onsite testing aligned to the Trust Services Criteria (TSP 100), covering Security, Availability, Confidentiality, and Privacy of data stored within our Managed and Cloud environments.
SSAE-18 Certification Badge

What is SSAE18 SOC 1/SOC2 Type II Auditing?

As part of our cybersecurity compliance services, an independent service auditor annually evaluates the processes and controls governing our Managed Services operations. These audits involve onsite examinations and control testing across our data center facilities to confirm the effectiveness of documented security and compliance controls over an extended period.

C Spire's SSAE 18 SOC audit reports are available to clients upon request. Please contact your Account Manager for access or additional details.

How Does C Spire Deliver Cybersecurity Compliance Services?

C Spire's cybersecurity compliance services are built on:

  • Industry-recognized standards
  • Independent third-party audits
  • Continuous control validation
  • Secure, compliant data center operations

These services help our Client organizations demonstrate compliance, strengthen governance, and maintain customer and regulatory trust.