Mida Solutions has announced it has received ISO 27001 certification issued by DNV GL, one of the leading global auditors which has helped enterprises in more than 100 countries, since 1864, to increase the security and the sustainability of their business activities. At the same time, the company has also renewed its ISO 9001 certification, which confirms the quality of its management processes.
There is a growing appetite among enterprises to put ISMS in place and the ISO 27001 certification sets out the requirements that need to be achieved for proper implementation of an ISMS. The certification details guidelines and best practices and confirms compliance with the processes, technologies and procedures that are needed to handle information and address associated risks involved in correct ISMS implementation.
The certification process is rigorous and involves an external auditor running legal, physical and technical checks on all aspects of the company seeking certification. This involves both digital and physical documentation, the hardware and software utilised and checks on the training and skill level of the company’s people.
“I’m so proud to have achieved this huge goal, not only for the relevance it has in our company as a demonstration of our data protection system but also because it conveys our desire to always improve our business,” says Mauro Franchin, the Chief Technology Officer and Founder of Mida Solutions.
“This certification is an added value for all our stakeholders, including customers and employees, because it highlights our working values and our attention to the information we process.”
Enterprises are increasingly looking to work with companies that are ISO27001 certified because of the integrity and assurance the certification provides. The comprehensive certification audit assesses whether it is necessary to increase data protection on all company assets, it assesses all internal and external risks, both in cyber and non-IT aspects and delivers a comprehensive and central view of corporate security.
ISO27001 is valuable to solution providers because it helps increase knowledge of the most effective ways to address common threats and identify weaknesses. By requiring a central and unified information security structure, the certification enables stronger resistance to attacks of all types and enables the protection of information that enterprises demand.
This protection, as detailed in ISO27001, ensures that information is continuously protected and policies regarding sensitive data are put in place to minimise risks. For example, if data is categorised as confidential it is made available only to approved personnel at the ISMS implementing service provider. This means that a robust technical protection process to prevent fraud is embedded within the implementation.
The credibility of the certification relies on its independence and Mida was pleased to note that certifier DNV GL found no follow-up audits were necessary following its assessment. The certifier found that Mida’s people had a high level of expertise regarding data protection and had strong knowledge of system vulnerability and how to mitigate risks. It also uncovered no areas in which Mida did not conform to the certification standard and cited the company’s willingness to increasingly integrate data management systems and its use of analysis tools as strengths.
from UC Today https://ift.tt/mOSA5C6
0 Comments