IMS International, a leading United Kingdom Accreditation Service (UKAS) accredited certification body, has extended its accreditation to provide organisations with certification services to ISO 27001:2013 information security management systems (ISMS).
An increasing worry for business owners is how to safeguard their confidential information that is stored and supplied through information systems. ISO 27001 is the international standard that promotes the security of information through quality system management. Accredited certification to the standard demonstrates that an organisation is following international information security best practices and has been audited by an approved certification body.
Michael Venner, CEO at IMS international said: “There are well-known cases in the health, education and financial sectors where the electronic storage of private information has come under attack. With much of the work outsourced to IT companies to manage, it is their responsibility to keep their client’s data safe.
“Achieving this standard should be a company’s first line in defense against potential threats to information such as hackers, viruses and the theft of intellectual property. We are very pleased to be able to add this to our portfolio of certifications.”
The standard ensures that an organisations information security is under control through specified and audited management systems. It also raises awareness across the company on the possible threats to information and how to put procedures in place to protect it.
“Gaining ISO 27001 is a strategic business asset that provides your customers with the reassurance that their information is protected. Many tenders now specify the standard as a basic requirement. The business can also develop its data sharing control among staff to improve production processes, so there are many benefits.” continued Mr. Venner.
In an environment where trusting technology to store, manage, and share data is the norm and data storage applications such as cloud based systems develop year-on-year, it is advised that all businesses certified to ISO 27001: 2005 update their systems to meet the 2013 requirements.