We are excited to announce that Assima is now ISO 27001:2013 certified.
Achieving this certification was a focus for our team because it demonstrates our ongoing commitment to maintaining the confidentiality, integrity, and availability of information we are responsible for.
What is ISO 27001?
ISO 27001 is a security management standard that provides the framework for organizations to manage information assets. This internationally recognized standard states that Assima has:
- Examined our information security risks and implemented a systematic, risk-based approach to managing the security of our information assets
- Adopted a management process that reviews these controls on an ongoing basis.
- Implemented internal processes to test for conformity.
- Been audited by an ISO accredited external party to test for conformity.
The certification is valid for three years and requires annual audits to test for continued conformity.
Why did we choose ISO 27001?
This certification demonstrates Assima’s commitment to information security. It is in line with the evolving needs of our rapidly growing client base, who require us to prove the highest level of trust when it comes to security and data protection.
What does this certification mean for you and your company?
Rest easy knowing that your information is secure
By working with Assima, you can be confident that we took all the necessary precautions to prevent data breaches. Plus, we are equipped with a robust plan in place designed to quickly detect incidents and respond accordingly.
Be confident that your security requirements will be met in the long run
This certification is a commitment to proactive security improvements. It’s a guarantee that Assima is always one step ahead of constantly evolving threats and cybercrime tactics. To maintain compliance, Assima has to participate in an external review process and become recertified every three years.
It gives you a foundation to base your vendor evaluation on
Even if you don’t know anything yet about Assima, our certification to the ISO 27001 standard gives you a reliable benchmark. You know that we have been vetted by a third party. You know that we met stringent requirements that you (and your IT department) are already familiar with. And you know that these requirements are now embedded in our information management system.
In contrast, a company that isn’t ISO-certified hasn’t been evaluated by a third party. This implies that it will take you more time to understand their cybersecurity system. And ultimately, you won’t gain the same level of confidence in their system over the long run.
It simplifies your decision-making process
Rather than starting from scratch, this certification gives you a solid reference on how our organization’s information security system works. It also provides you with proof of our compliance with related laws and regulations. This can help you fast track management buy-in and decide whether Assima is a good fit for your specific use case.
Where can I get more information on the ISO Standards?
We recommend you check out the International Standard Organisation (ISO) website. They provide plenty of information on what is covered by ISO 27001.
Assima is committed to transparency and our certificate is available on request. Please email security@assimasolutions.com for more information.
While this is a major milestone for Assima, our Cloud and Security Team is just getting started. As Assima’s Head of IT, Cloud and Security, says, “ISO 27001 was just the first milestone in our security initiative. There is a lot more to come”
