Ciklum, a Digital Solutions company, announced its conformity to the requirements of the ISO/IEC 27001:2013 “Information Security Management System” standard. ISO/IEC 27001 is the best-known standard in the ISO family providing requirements for an information security management system (ISMS). By undergoing this internationally recognised security certification, Ciklum is demonstrating its commitment to the protection of both the client and own data.
Implementation of the requirements under the ISO/IEC 27001 standard was a strategic decision for the company. The project was undertaken in direct response to the needs of Ciklum clients.
The information security management system at Ciklum preserves the confidentiality, integrity and availability of information by applying a risk management process, and gives confidence to Ciklum clients and stakeholders that risks are managed adequately.
As preferred certification organization, Ciklum chose PECB due to its proven competence and relevant sector experience. PECB is a certification body for persons, management systems, and products on a wide range of international standards. It offers its expertise on multiple fields, including but not limited to Information Security, IT, Business Continuity, Service Management, Quality Management Systems, Risk & Management, Health, Safety, and Environment.
Through implementation of the ISO/IEC 27001 recommendations and requirements, Ciklum has shaped its ISMS to be a systematic and resilient approach to managing sensitive company and client information. It includes people, processes and IT systems by applying a risk management process. Introduction of the security controls, defined as a good practice in the ISO/IEC 27001 standard, allows Ciklum to better detect weaknesses or vulnerabilities and fix them accordingly.
Head of IT at Ciklum
In light of the threats to personal information, the European Union has recently released the new General Data Protection Regulation (GDPR) guidelines aimed at protecting user data. The GDPR introduces a set of rules that require organizations to implement controls to protect personal data. The GDPR encourages to follow the recommendations under ISO/IEC 27001 or the like to serve the purpose of demonstrating that the organisation is actively managing its data security in line with international best practices. Conformity to the ISO/IEC 27001 standard will help Ciklum meet this requirement.
The ISO/IEC 27000 family of standards helps organizations keep information assets secure. Using this family of standards help organizations manage the security of assets such as financial information, intellectual property, employee details or information entrusted by the third parties. ISO/IEC 27001 is the best-known standard in the family providing requirements for an information security management system (ISMS).