We are delighted to announce that we have passed an in-depth set of assessments to achieve the ISO/IEC 27001:2013 certification for our Information Security Management System. ISO/IEC 27001:2013 specifies the requirements for establishing, implementing, maintaining and continually improving an information security management system within the context of the organization. It also includes requirements for the assessment and treatment of information security risks tailored to the needs of the organization.
What does this mean to you?
- We take appropriate control measures to protect confidential and privileged information.
- We are following international best practices to mitigate cyber threats and have a cyber incident response and management processes to respond to cyber-attacks.
- We have established a formal information risk management process and a functioning ISMS or Information Security Risk Management System.