Eurotux aims for ISO27001 certification
Eurotux formally began the ISO27001 certification process, contemplating the scope of its traditional services. With the beginning of the implementation process and subsequent implementation, Eurotux takes another step towards the adoption of the standard and international reference for information security management.
The company has already implemented a series of Policies and Norms which guarantee compliance with this standard. Besides, it has a maintenance plan for several controls of the standard regarding its own organization, in a leap of maturity verified in recent years.
In addition, Eurotux already provides its customers with a Maintenance Plan which includes technical activities aligned with this international standard, which greatly benefits the quality, resilience and security of its customers’ services, platforms and data.
ISO 27001 has been continuously improved over the years and is derived from a previous set of standards, namely ISO 27001 and BS7799 (British Standards). Its origin actually goes back to a document published in 1992 by a British government department setting out a code of practice on Information Security management. The general principle of the standard is the adoption by the organisation of a set of requirements, processes and controls with the purpose of mitigating and adequately managing the organisation’s risk.
The ”Peers” of an ISO 27001 certified entity, namely your customers, suppliers and partners, also gain from the interaction with the certified organization. A major concern these days is confidence in the proper handling of your organisation’s sensitive information. The implementation of ISO 27001 ensures a high commitment to information protection, which represents a considerable level of comfort for organisations interacting with the certified entity. This way, customers, partners and suppliers of this entity know that their organization’s information will be treated according to high standards of management and protection in terms of Information Security, since the certified company was audited by an external and idoneous entity.
Eurotux has now decided, since the organization is already familiar and accustomed to these practices, to proceed with the formalization of the certification process.