Achievement of ISO 27001:2013
Yotta, the infrastructure asset management technology arm of OMG plc, has achieved ISO 27001:2013 certification. The International Standards Organisation (ISO) 27000 family of standards helps organisations, such as Yotta, understand and prevent against potential threats to sensitive or valuable data such as hacking, leakage or loss. The standard ensures Yotta is implementing best data security practices and provides reassurance to Yotta’s growing client base, including users of their cloud based asset management software Horizons, that their information will be protected and safe from deliberate or accidental compromise.
“Almost every business relies on the confidentiality, integrity and availability of its own commercial data and, in the case of our business, our clients’ data,” commented Nick Smee, CEO of Yotta. “Protecting that data, whether it is held electronically or by other means, is fundamental and is at the core our security strategy and planning.”
“ISO27001:2013 is the highest and most up to date, internationally recognised standard for data security management and, by achieving it, Yotta is sending a clear message to all our customers and industry partners; ‘You can trust us with your most valuable asset – the data that informs every decision you make’” continued Smee.
ISO27001:2013 standard recently replaced the previous 2005 version. The latest in information security management best practice ISO27001:2013 specification helps businesses and organisations throughout the world to develop an Information Security Management System (ISMS). An ISMS is a framework of policies and procedures that includes all legal, physical and technical controls involved in an organisation’s information risk management processes. The updated standard places extra emphasis on how a company’s ISMS is performing and includes a new section on outsourcing and continuous improvement. Yotta has also integrated ISO27001:2013 with its own quality and environmental management systems to provide a joined up approach to the business’ ongoing corporate improvement, responsibility and reportability.
Yotta chose to work with a highly respected independent certification body, Lloyd’s Register Quality Assurance (LRQA), to achieve this exacting standard. An experienced auditor completed a comprehensive and extensive ‘under the bonnet’ review of all of Yotta’s Leamington HQ’s people, processes and information technology systems to ensure compliance. Ongoing evaluation, complete with six monthly reviews, will ensure that Yotta continues to meet all requirements of the standard and is committed to continuous improvement of its processes and practices.