Security, confidentiality and integrity have absolute priority for us as an IT service provider. For this reason, we are certified according to the ISO 27001 standard.
Focus on information security
The international standard ISO 27001 is intended to ensure information security in organisations and companies of various kinds. The basis for certification is the formulation of requirements as well as the subsequent implementation and ongoing development of an information security management system (ISMS). For the implementation of such a system, possible security risks within the company must first be identified. Methods for avoiding and minimising these risks are then developed. The focus is thus on creating a framework for identifying and systematically dealing with risks within a specific company.
Which measures lead to certification according to ISO 27001?
As security measures, a series of guidelines, procedures, technical steps and organisational rules are usually implemented. On the one hand, this involves establishing and expanding IT security, for example through encryption mechanisms and firewalls. On the other hand, however, the creation of suitable work processes, the consideration of legal framework conditions, the training of staff in security issues and the precise documentation of all risks and action processes also play an important role. Together, these components then form the basis of an ISMS as defined by the ISO 27001 standard.
What are the benefits of certification for companies?
With ISO 27001 certification, a company can independently prove that it has completed all the steps to establish a functional ISMS - starting with the description of risks, through the definition of security roles, to continuity management.
High standards guaranteed
Certificates issued are usually valid for three years. Within this period, annual audits ensure that the company continues to meet the requirements and implements them in its ISMS. At the end of the three years, the organisation must be re-certified. This ensures permanent conformity with the standard.
ISO 27001 highlights fundamental values in companies
Certification to the ISO 27001 standard thus demonstrates a company's willingness to commit to fundamental values such as information security, confidentiality, availability and integrity. That is why we at COViS have had ourselves certified: for us, security and trust are an integral part of daily work practice and of every project. Our customers should always be able to rely on this. In addition, we convince with the award as Top Company by the employer rating platform Kununu as well as the certification as an IREB Platinum Partner.
