Doppel Earns Landmark AI Governance Certification, Setting New Industry Bar

SAN FRANCISCO, CA – April 13, 2026 – In a move that signals a new era of accountability in artificial intelligence, cybersecurity firm Doppel announced today it has achieved a trio of prestigious International Organization for Standardization (ISO) certifications, including the new global standard for AI governance, ISO/IEC 42001. The company is now one of the first 350 organizations worldwide to be certified for its Artificial Intelligence Management System (AIMS).

This landmark achievement, part of an “ISO Trifecta” that also includes ISO/IEC 27001 for information security and ISO/IEC 27701 for privacy, places the AI-powered Social Engineering Defense (SED) platform at the forefront of a global push for responsible AI. As AI technologies become increasingly integrated into both cyberattacks and defense mechanisms, this external validation of Doppel's internal processes establishes a critical benchmark for trust in a market grappling with the ethical and security implications of AI.

A New Gold Standard for AI Trust

The centerpiece of the announcement, ISO/IEC 42001, is rapidly becoming the gold standard for organizations developing or deploying AI. Published in December 2023, it is the world's first international standard designed to provide a comprehensive framework for managing AI systems responsibly. It requires organizations to establish clear policies, assess AI-specific risks like bias and transparency, and implement robust controls throughout the AI lifecycle, from development to deployment and ongoing monitoring.

For an organization to be among the first certified is a significant differentiator. It demonstrates a proactive commitment to ethical AI that goes beyond ambition and into documented, audited practice. This certification is designed to align with emerging global regulatory frameworks, including the European Union's stringent AI Act and the U.S. National Institute of Standards and Technology (NIST) AI Risk Management Framework. By achieving certification so early in the standard's existence, Doppel signals to customers and regulators that its commitment to responsible AI is foundational, not an afterthought.

These new certifications build upon Doppel’s existing SOC 2 Type II attestation, creating a formidable compliance portfolio that underscores the company’s investment in security, data protection, and operational transparency. This milestone is particularly crucial as the company continues its global expansion into markets where ISO certifications are a highly regarded, and often required, benchmark for suppliers.

Fighting AI with Governed AI

Doppel’s core mission is to protect organizations from a new generation of sophisticated, AI-driven threats that legacy technology can no longer handle, including hyper-realistic phishing, deepfakes, and widespread brand abuse. The irony of using AI to combat AI-driven attacks is not lost on the company’s leadership, who stress that this dynamic makes internal governance paramount.

"From day one, our mission has been to protect the world from social engineering attacks," said Rahul Madduluri, Co-Founder and CTO at Doppel. "As these threats evolve and AI makes cyberattacks more effective than ever, we must hold ourselves to the highest standards for how we build, deploy, and operate our technology. Achieving these certifications is an important step in ensuring our customers can trust that their organizations are protected against increasingly sophisticated threats."

The certifications provide independent validation that Doppel’s platform is not only effective but also built on a foundation of strong controls for AI usage and customer data handling. This includes clear governance and accountability, continuous risk assessment, and ongoing monitoring to ensure its systems perform as intended and remain resilient against misuse. This comprehensive approach, validated by external auditors, provides customers with assurance that the cure is not worse than the disease.

A Strategic Driver for Growth and Trust

Beyond technical validation, achieving the ISO Trifecta is a clear business strategy. In a crowded cybersecurity market, demonstrable trust is a powerful competitive advantage. The certifications serve as a testament to the maturity of Doppel’s internal systems, a point highlighted by David Forman, Chief Executive Officer of the auditing firm Mastermind.

"Very few organizations reach this level of alignment across their systems, processes, and controls," said Forman. "Doppel stood out in how its controls are consistently applied across the organization. They are built into day-to-day operations, not layered on afterward. That consistency is a clear indicator of a mature approach."

This maturity is a key selling point for enterprise customers and a confidence booster for investors. The announcement follows Doppel’s recent Series C funding round and comes amid a period of rapid growth. The capital is being used to scale its platform and expand its team, with the robust governance framework providing a stable foundation for that expansion. By investing in these certifications, Doppel is not just mitigating risk; it is building a defensible market position rooted in trust and operational excellence.

Redefining Security in the Age of AI

The proliferation of generative AI has fundamentally altered the threat landscape, blurring the lines between what is real and what is fabricated. This new reality places immense pressure on organizations and the security vendors they rely on.

"As attackers use AI to scale and personalize social engineering, it is becoming increasingly difficult to distinguish what is real from what is not, dramatically expanding enterprise risk," said Kendra Cooley, Senior Director of Information Security and IT at Doppel. "The bar for trust, security, and operational standards has changed. Achieving the ISO Trifecta reinforces our commitment to building and using AI responsibly while maintaining the highest standards of security and privacy for our customers."

Doppel's platform addresses this expanded risk by combining Digital Risk Protection—detecting and dismantling threats across multiple channels—with Human Risk Management, which uses insights from real-world threats to inform employee training and phishing simulations. This holistic approach, now backstopped by internationally recognized standards for AI, security, and privacy, offers a glimpse into the future of cybersecurity, where technological capability and ethical governance must go hand in hand. As more organizations seek to leverage AI for defense, Doppel's early and comprehensive embrace of certified governance may well become the blueprint for the entire industry.