Our Commitment to Information Security

At GAMS, we prioritize the security of our information and the trust of our clients and partners. In recognition of our stringent security practices, we are proud to announce the certification of GAMS Software GmbH under ISO 27001:2013 in the scope of

Development and Operation of Algebraic Modeling Systems.

ISO27001 certificate (April 18, 2024)

Statement of Applicability (January 19, 2024)

Verify our certification


Our Information Security Management System (ISMS)

Our commitment to information security is embodied by our comprehensive Information Security Management System (ISMS), established in accordance with ISO 27001:2013 standards. This framework ensures that we consistently identify, evaluate, and address security risks, safeguarding sensitive information against threats.

Key components of this system are:

Employee Training We believe that a well-informed team is our first line of defense in maintaining security standards. All employees at GAMS undergo regular training on our security protocols and best practices to ensure everyone is equipped to protect our systems and data.

Regular Audits To maintain and improve our security standards, we conduct regular audits of our systems and processes. These audits are integral to our continuous improvement efforts, ensuring compliance with our security policies and the latest industry standards.

Core Tools and Technologies

We utilize a suite of state of the art tools and technologies to manage and protect our information, including:

GitLab: For secure code management and collaboration, including continuous integration for automated static and dynamic application security testing
Vaultwarden: An open-source password management solution that helps us securely store and manage access credentials.
Email Services: Hosted by Google Workspace with enforced MFA, ensuring secure and reliable communication.
Cloud Infrastructure Management: We use AWS infrastructure to deploy and operate scalable and secure applications across multiple availability zones. All AWS accounts are fortified using hardware-based MFA (YubiKey), providing an additional layer of security against unauthorized access.

At GAMS, we are committed to maintaining the highest standards of information security.

More information about security aspects of our Engine SaaS cloud service is available as part of our documentation .