• Home
• About ITM
  • Directors
  • People
  • News
  • Associated Companies
  • Quality
• Services
  • Consulting
  • Managed Services
  • Software Development
  • Resource Services
  • Solvency II
• Clients
  • Business Areas
  • Case Studies
  • Client Area
  • Events
  • Testimonials
• Systems
  • Pension Admin
  • Data Audit
  • Auto Enrolment
  • Member Portal
• Contact Us
  • Opportunites
  • Locations

News

Back...  Show ALL news

ISO27001 Accreditation
16/07/2012
By: Guy Ridley

ITM is proud to announce that we have reached a new milestone by achieving the ISO27001 accreditation. This accreditation supports ITM as a market leading independent specialist provider of data, administration consulting and IT support services. This investment has produced an infrastructure and a set of services with robust data protections for our clients. ISO 27001 is one of the most widely accepted and internationally recognised security standards and we have earned it through the assessment of our systems, technology, processes and data centres.

ISO 27001 is the international standard developed exclusively for Information Security Management Systems (ISMS), requiring companies to employ a methodical approach to managing sensitive information and ensuring data security. The certification is a standard which companies are now aiming for, and by achieving the accreditation it affirms ITM have taken appropriate and adequate security measures to protect information assets and give confidence to interested parties.

Our compliance with the ISO standard was certified by LRQA, a leading UKAS-accredited provider of management system certification. The scope of the accreditation covered all areas of the business including:

Locations                                                          Activities

London office                                                    Project assignments and associated deliveries

Guildford office                                                 System development and managed service delivery

ISO 27001 specifies the requirements for establishing, implementing, operating, monitoring, reviewing, maintaining and improving a documented Information Security Management System within the context of the organisation's overall business risks. A certification audit is carried out annually. This ensures that in order to maintain certification, ITM has to continually improve its’ information security management system.

The standard comprises ten exhaustive control categories including:

• organisation of information security
• access controls
• physical and environmental security
• asset management
• business continuity management
• communications and operations management

This new certification, along with our existing ISO 9001 certification, help assure our customers that ITM is committed to on-going development and maintenance of a robust Information Security Management System (ISMS) that is subject to regular certification audit by an independent, third-party auditor.

  

---

Site Map | Terms | Accessibility | Privacy Policy