ISO 27001:2013 is one of the most widely recognized and internationally accepted information security standards. It identifies requirements for a comprehensive Information Security Management System (ISMS), and defines how organizations should manage and handle information in a secure manner, including appropriate security controls and establishes requirements for information controls to manage people, processes and technology.
All of its business operations, services and office locations are covered by Privasec’s certification.
In order to become certified, Privasec’s information security practices and controls were independently assessed by the Lloyd’s Register after demonstrating an ongoing and systematic commitment to managing and protecting company and customer data.
“Privasec already held several accreditations but this further shows our ongoing commitment to ensure we meet, maintain and proactively improve a best practice approach to information management and protection” said Guy Coles, Privasec’s Sales Director.
“Through this achievement, Privasec remains a clear leader in information security among Australian Security Services organisations and clearly illustrates that we practice what we preach” Coles said.
ISO 27001 provides requirements for establishing, implementing, maintaining and continually improving an Information Security Management System (ISMS). An information security management system preserves the confidentiality, integrity and availability of information by applying a risk management process to secure data and strategise security investments. ISO27001 gives confidence to interested parties that information security is adequately managed. ISO27001:2013 also go a long way helping Australian business selling to European customer, to comply with the upcoming GDPR legislation coming into effect in May 2018