CSA Achieves ISO 27001 Certification for Information Security
Thursday 6th April 2017:
Today we are excited to announce that we have achieved ISO/IEC 27001 certification, the international standard for Information Security Management Systems (ISMS). All of our employees have been committed to meeting the extensive criteria required for satisfy the certification. It shows that we place the highest value on the security measures we take to protect client data.
The standard formalises the requirements for an ISMS (Information Security Management System), a systematic approach to keep sensitive information and assets secure within organisations. It includes the application of a risk management framework to people, processes and IT systems. In order to achieve this certification, a company must show it has a systematic and ongoing approach to managing sensitive company and customer information.
“CSA are committed to delivering best practice across the board, with ISO 27001 being an addition to the ISO 9001 Quality Management certification we have held for the past 20 years” – John Schneider – Managing Director at CSA
“We are proud to have formalised what we had already been doing for clients for many years,” said Mr Schneider. “CSA are committed to delivering best practice across the board, with ISO 27001 being an addition to the ISO 9001 Quality Management certification we have held for the past 20 years. We see this addition as further testament of our commitment to information security, particularly with recent changes to legislation regarding data breaches.”
We recognise that preventing security breaches has become a high priority in the modern business landscape, as more and more organisations seek external partners who meet the ISO 27001 standard to protect their data. This certification is an extension of our existing information security processes, where we are currently offering dedicated Security-as-a-Service solutions built around global best practice.
About the Audit
Achieving the ISO/IEC 27001 standard involves a formal security audit of an organisation’s ISMS to test it directly against the requirements of the standard. Upon successful completion, the organisation must complete regular follow-up audits to confirm continuing compliance with the standard. The audit was conducted by SAI Global in March 2017.