IT receives ISO Certificate
SGRF has been recommended for the ISO/IEC 27001:2013 certification, at the very first attempt. By achieving the standard, SGRF has gained a label of recognition: that of operating according to international ISO/IEC Information Security Management Standards (ISMS).
ISO/IEC 27001:2013 certification is the most widely recognized and internationally accepted information security standard. It identifies requirements for a comprehensive Information Security Management System and defines how organizations should manage and securely handle information, using appropriate security controls.
This recommendation shows the IT department’s commitment to high standards ensuring that controls are in place to reduce the risk of cyber security threats, protecting the confidentiality, integrity, and availability of SGRF's information assets.
The scope of certification includes SGRF Information Technology department, both in Beach One Building and at CBO KOM DR site office. Plans to expand to further business units are set for 2018/19. The successful audit was carried out by TÜV Rheinland Middle East, member of TÜV Rheinland Group, a global leader in independent testing, inspection and certification services