Perfectial Achieves ISO27001 Certification to better Protect their Clients’ Security
Perfectial, a custom software development company has achieved a companywide ISO 27001 certification, thus proving its commitment to data security and their clients.
ISO27001 is an information security standard that is published by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC). It specifies a management system that is intended to bring information security under management control and gives specific requirements. To get certified, companies must successfully complete an audit conducted by an accredited certification body.
The information security standard ISO27001 has very clear instructions and requirements for obtaining compliance with it. In order to attain the certification Perfectial conducted an in-depth investigation of the company’s processes that are related to information security. Chiefly it was executed to understand where the company is at and what needed to be done.
“Since much of Perfectial’s team has decades of experience in the industry, as well as understanding of what information security is, at the very beginning of our certification process we’d discovered that we already meet a lot of the requirements”, says Vladyslav Hapanovych, Perfectial’s Head of SDO and acting information security officer in charge of ISMS implementation. “We had secure connections between sites, data encryption, access management, malware protection, back-ups and much more.”
In preparation for the audit, Perfectial took effective actions in the following directions: organizational (drawing the rules and policies, employee briefing, communication with other departments heads about how they can improve information security), technical (implementation of help desk, IT assets inventory, network health monitoring system, intrusion detection system), and finally educational actions that were directed at explaining the importance of information security and what the new policies mean. Following these steps, Perfectial successfully accomplished the audit in March 2019 carried out by Bureau Veritas, an international certification agency.
“ISO27xxx is a huge system of standards that took decades to work on and perfect. And even being able to use this huge knowledge base, is already a huge benefit and success of this certification,” says Ivan Kohut, Perfectial CTO. “This certification audit not only improved our expertise within the information security field but also in various work processes. The certification shows how serious we are about safeguarding the security and integrity of our data. It will also open a new scope of possibilities for our company, as we now are able to collaborate with a wider range of companies.”
Information security management system (ISMS) is not a single unit that works in isolation from others. It’s a systematic approach that has to become an integral part of a business. Something that should be as common as corporate etiquette or a clear company structure. This is how Perfectial views information security and plans on ensuring their employees and partners are operating in a secure environment.
Perfectial is a custom software development company committed to excellence in developing innovative applications for a range of businesses in Europe and the U.S. Perfectial’s competence in working with modern platforms and frameworks is recognized and highly valued by our customers and partners.
With over 200 professionals in-house, including project managers, solutions architects, .Net, Java, Ruby on Rails, Python and Node.js developers, UI/UX design and Quality Assurance teams, we offer full-cycle of outsourcing software development: from initial identification of business requirements to system testing, deployment, and maintenance.