ISO 27001 IS THE INTERNATIONAL STANDARD DESCRIBING BEST PRACTICE FOR AN INFORMATION SECURITY MANAGEMENT SYSTEM, OFTEN SHORTED TO ‘ISMS’.
An ISMS encompasses people, processes and IT systems and is a systematic approach to managing sensitive information to ensure it remains available, secure, confidential and intact.
eTech recognises the importance of a robust ISMS in order to:
eTech’s ISO 27001 certification is applicable to our provision of software for handheld devices, to ensure that any data captured and transferred has appropriate technical and organisational safeguards in place. Our ISO 27001 certification also covers the storage and processing of data within eTech’s data centres, the secure transfer of data to external parties and the destruction and archiving of data.
eTech Operations Director – Joe Mellon, commented: “By adhering to the internationally accepted ISO 27001 standard, we are ensuring that our overall approach to information security is strategic as well as operational. By working in accordance with ISO 27001 we are demonstrating our continued commitment to safeguarding the data of our customers and partners, and the systems that we provide.”
What is an Information Security Management System?
An ISMS is “part of the overall management system, based on a business risk approach, to establish, implement, monitor, review, maintain and improve information security. The management system includes organisational structure, policies, planning activities, responsibilities, practices, processes and resources” (ISO/IEC 27000: 2012).
If you would like further information please drop us an email to email@example.com.