ISO 27001 is recognised worldwide as the standard for information security management.
We have demonstrated the high standards set by the International Organisation for Standardisation (ISO) through our achievement of the ISO 27001 certification.
Tim Moorey, Information Security Manager at The Exeter said:
“The protection of our members’ data is incredibly important to us and we are proud to announce that our ISO 27001 certification has been re-validated. The certification ensures that effective security controls and policies are in place. This independent certification and demonstration of continuous improvement give confidence to our partners and members that we meet data protection expectations and can be trusted to keep the security of information at the forefront of our processes.”
An annual audit is carried out by an external third party to ensure our systems continue to meet the stringent requirements set out in the ISO 27001 standard.
To gain the ISO 27001 award, we proved that we could not only prevent but defend against potential data system vulnerabilities. This achievement was due to our comprehensive suite of information security controls and the management system we have in place to ensure these controls remain efficient and continue to meet our members’ needs. The standard requires that we can evidence robust information security controls including checking for and managing potential security threats and vulnerabilities.