ISO 27001 Re-certification Audit
On the 8th of March, we were delighted to welcome Ben Frisby from Atlas for our annual ISO 27001 re-certification audit, which was conducted online. Joining from Axia were our Managing Director, Richard Etheridge, Development Team Leader, Dawid Hetmanczyk, and our Business Support Officer, Thomas Duke.
We received our report back within a few days, and are pleased to announce that we attained an impressive mark of 30 positive observations, with no rectifications required.
A full list of our successful observation areas are as follows:
- Core
- Planning and Risk Management
- Operations
- Support
- Leadership, Training and Competence
- Monitoring and Measurement
- Document Management
- Management
- Information Security Management System
- Information Security Policy
- Corrective Actions and Improvement
- Internal Audit
- Management Review
- Statement of Applicability
- Information security policies
- Organisation of information security
- Human resource security
- Asset Management
- Access control
- Cryptography
- Physical and environmental security
- Operations security
- Communications security
- System acquisition, development, and maintenance
- Supplier relationships
- Information security incident management
- Information security aspects of business continuity management
- Compliance