Datacentrix has been awarded the ISO 27001 certification for its information security management system (ISMS). The certification is a framework of policies and procedures that includes all legal, physical and technical controls involved in an organisation’s information risk management processes.
Datacentrix chief financial officer, Elizabeth Naidoo, who was the executive sponsor driving the ISO certification process, says the company is pleased and proud to share this news. The certificate was awarded by international certification body PECB Management Systems, following its recent audit of Datacentrix’s ISMS.
She adds, “Based on the value proposition that Datacentrix offers, the ISO certification assists in identifying information security issues and addressing them more effectively, both internally and externally. The internal company culture has also benefitted, with more focus on information security, the identification of assets, and how we treat assets, risks, threats and the vulnerability associated with those assets.”
The ISO certification is important for Datacentrix, as its framework provides many opportunities for improvement by drawing up new sets of controls, and managing these more effectively. “The certification demonstrates that we have done in-depth risk assessment and put systemised controls into place. It increases the reliability and security of systems and information.
“ISO 27001:2013 – the current version of ISO 27001 – provides a set of standardised requirements for an ISMS. The standard adopts a process-based approach for establishing, implementing, operating, monitoring, maintaining and improving your information systems management.
“The benefits of implementing ISO 27001 in your organisation are clear. Primarily, it leads to a stronger business model, longevity, and an excellent information security management system,” she concludes.
© Technews Publishing (Pty) Ltd | All Rights Reserved