ISO certification gives our customers an assurance that the products and services we supply are of high quality. It also demonstrates that Admincontrol takes security very seriously, says the company’s Head of Security.
The Head of Security at Admincontrol, explains that the company dedicated two years to achieving its ISO 27001:2022 certification.
IT security working from home
Our Head of Security believes that all companies should focus on ISO certification when choosing suppliers, not least for solutions where security is important, as in the case of a board portal.
With continuous improvements of the security controls integrated in the ISO 27001 standard, implemented with a risk-focused approach, an ISO 27001-certified supplier will have the optimum security controls in place for the data that it processes. If the supplier processes confidential data as part of its standard service, and is ISO-certified for this, you can be certain that security is also optimised for this purpose.
Opting to become ISO-certified is a commitment that requires a lot of time and resources. For precisely this reason, you can be confident that, if the supplier has put itself through this process, the company is dedicated to maintaining the highest possible standards and delivering exceptional products and services to its customers. It is important to note that ISO certification is not a one-off event. To retain its ISO certification, the company is audited annually to ensure compliance with the standard and guarantee that it will continue to supply a high quality, premium service.
Certification demonstrates compliance. ISO 27001 is a global standard and often referred to in both general terms and in legal provisions as a method for achieving good data security. In today’s world, with its increasing focus on compliance with laws and regulations, such as the GDPR, you should only choose suppliers who can prove that they have everything in order. If the supplier is unable to certify that they have everything in place, this may expose you to increased risk and make you directly responsible.
Have your company got safe IT-systems in place?