Written by Lancom Communications, July 2022
ISO 27001 is an internationally recognised information security standard
We’ve successfully been awarded certification against the ISO 27001 standard, confirming our high level of reliability in protecting customers and data from security threats. In this post, we outline what this means and why our customers should have peace of mind.
What we believe in
The trust our customers place in us is something we take extremely seriously. We believe IT is the lifeblood of every business and we are 100% committed to keeping our customer's information and data secure. Our ISO 27001 certification is just one of the many ways we work to keep our customers safe.
What is ISO 27001 certification?
ISO 27001 is an internationally recognised information security standard published by the International Organisation for Standardisation (ISO). It’s an official standard for information security, setting out the requirements for establishing, implementing, maintaining, and continually improving an information security management system (ISMS). It’s a comprehensive program that looks at nearly everything a system administrator does within the IT infrastructure of an organisation.
Our Chief Technology Officer, Phill Claxton explains further: “ISO 27001 certification is about more than just gauging risk related to your mission-critical resources. It helps you understand the likelihood of a failure, or an attack, the impact of these types of situations, and what you can do now to prevent these issues from ever arising in the first place.”
Why ISO 27001 matters
ISO 27001 certification is essential because it, like the technology you’re already using, is adaptable to your specific business. No two businesses are using exactly the same technology in exactly the same way because everyone has different goals and objectives. ISO 27001 operates on the same basic principle.
Phill explains: “ISO 27001 doesn’t tell you precisely how you need to implement security in your organisation, because there is no one size fits all approach. Instead, the ISO control framework provides guidance around specific objectives you need to accomplish at the organisational level in order to achieve the desired outcomes. For us, that’s having a really robust security posture and protecting our customers and their data.”
The ISO 27001 has high standards
In order to achieve the certification, we were assessed by independent certification body, the British Standards Institution (BSI), the world's first standards body and founding member of ISO.
Phill explains: “BSI completed two rigorous audits of our processes and systems. For the final audit, we had multiple auditors working with us to review all of our ways of working. We also needed to demonstrate a continuous and systematic approach to managing and protecting both company and customer data.”
“Ultimately, achieving ISO 27001 means our systems, processes, procedures and documentation meet the requirements stipulated by ISO. This in turn allows us to protect our customers, their employees, clients, and ultimately their entire business from harm through having a double-bolted approach to data security” – explains Phill.
Why cyber security is important to a business
A successful data breach comes at both a financial and reputational cost. With cyber-attacks now commonplace and high-profile events, many organisations have security concerns and rightly so.
Phill explains: “Cyber security is important to businesses, not just to protect their own assets, but also their customers’ private data. Customer trust is what builds a reputation. If customers entrust you with their data, that means they trust you to keep it safe. If you lose that trust, it’s hard to regain and when your reputation goes down, so does your revenue.”
Risk can never be entirely eliminated which is why achievements like ISO 27001 certification go a long way towards understanding, preparing for, and mitigating that risk — minimising the potential damage as much as possible and guaranteeing you’re as protected as you can be.
Lancom Technology: Creating Leverage Built on Trust
At Lancom Technology we understand just how important cybersecurity is to our partner's businesses. Even a small lapse in security doesn’t just put our partners at a competitive disadvantage, it leaves the door open for a data breach or other disaster that even the strongest business may struggle to recover from.
As a trusted partner who helps keep your technology and teams humming, ISO 27001 certification is just one of the many steps we’ve taken to develop a relationship based on trust.
If you have any questions about Lancom Technology’s ISO 27001 certification, or if you would like to sit down and speak to Phill or someone else about ISO 27001 in a little more detail, contact us today.
Talk to us about your Windows Server
We have extensive Microsoft expertise with our teams designing and implementing hundreds of Windows Server projects for companies of all sizes. Get in touch and tell us about your Windows Server.