Implementation and certification of information security systems

The purpose of this project was the implementation and certification of the ISO27001 regulation in 6 social enterprises and of the combined regulations ISO9001 + 14001 in 3 companies. Co-financed by IGAPE and coordinated by EGANET, the Asdel Consulting Company was responsible for its implementation, while the certification was conducted by TÜV Rheinland Cert GmbH.

Management Systems of Information Security, based on the UNE-ISO / IEC 27001 regulation, which allows the managing of all risks and threats that affect or may affect different business processes of the company, improving its competitiveness.

Today, the TIC is a booming sector, serving all type of other sectors, in which the management of information and data has become increasingly important. Therefore, ensuring that such information will not be violated by agents internal or external to the organization should be of maximal importance. The implementation of a management system of this kind is a very effective tool to enhance the integrity, availability and confidentiality of all your systems and reduce their vulnerability.

Although the UNE-ISO / IEC 27001 is not a widespread regulation, the 6 companies that make up this project seek to be a reference, characterized by a good performance of their processes and high safety in the operations they handle, seeking solutions both to ensure their permanence against possible risks and to allow them to move with control.

Moreover, the adoption of this measure and its certification allows companies to offer an image of reliability and confidentiality to clients representing a commercial advantage over other competitors. The implementation of this methodology improved the effectiveness of organizations to the extent that all operations performed by the staff are systematized, helping to define guidelines for action and communicate security measures applicable in every situation.

Built with HTML5 and CSS3 2014 HUMAN SOF S.L.

Enisa