The renewal follows an extensive audit by the British Standards Institute that found no ‘non-conformities’ in any area of Plan B’s operation.
Tim Dunger, Plan B’s Operations Director said ‘We are delighted our 27001 accreditation has been renewed. Data and operational security are absolutely vital to our customers and therefore to Plan B, and being certified as compliant with the standard is our customer’s guarantee that their data and recovery systems are protected. We put a large amount of work into the secure operation of the business and it is great to have that recognised so comprehensively through this renewal.’
ISO/IEC 27001 is the international standard that formally specifies a management system that is intended to bring information security under explicit management control. Being a formal specification means that it mandates specific requirements. Organizations that claim to have adopted ISO/IEC 27001 can therefore be formally audited and certified compliant with the standard.
SO/IEC 27001 requires that management:
- Systematically examine the organization’s information security risks, taking account of the threats, vulnerabilities and impacts;
- Design and implement a coherent and comprehensive suite of information security controls and/or other forms of risk treatment (such as risk avoidance or risk transfer) to address those risks that are deemed unacceptable; and
- Adopt an overarching management process to ensure that the information security controls continue to meet the organization’s information security needs on an ongoing basis.
You can find out more about Plan B’s general approach to security here. If you would like to more about Plan B’s ISO 27001 accreditation or would like to discuss protecting your own servers then do contact us.