Let's Talk

Infomatics is awarded ISO 27001 and ISO 20000 certifications

Written by Emaun KashfiJune 15, 2022

Infomatics is proud to announce that it has earned the prestigous ISO 27001 and ISO 20000 certifications. These two certifications underscore Infomatics' deep commitment to information security and efficient IT service management. These achievements are in addition to the service providor's ISO 9001 status, based on the best-known quality management standard focusing on customer satisfaction.

Infomatics earned these certifications from SIS Certifications, which is accredited by the International Acrcreditation Forum to audit and certify businesses seeking ISO certifications.

ISO 27001: information security management system

The ISO 27001 certification shows that an organization has established, maintains and improves an information security management system within an organization. This standard gives potential clients and stakeholders peace of mind, knowing that the organization has established a coherent system to address any security risks to vital information.

This certification includes 114 controls to certify the strength of an information security management system:

  • A.5: Information security policies (2 controls)
  • A.6: Organization of information security (7 controls)
  • A.7: Human resource security - 6 controls that are applied before, during, or after employment
  • A.8: Asset management (10 controls)
  • A.9: Access control (14 controls)
  • A.10: Cryptography (2 controls)
  • A.11: Physical and environmental security (15 controls)
  • A.12: Operations security (14 controls)
  • A.13: Communications security (7 controls)
  • A.14: System acquisition, development and maintenance (13 controls)
  • A.15: Supplier relationships (5 controls)
  • A.16: Information security incident management (7 controls)
  • A.17: Information security aspects of business continuity management (4 controls)
  • A.18: Compliance; with internal requirements, such as policies, and with external requirements, such as laws (8 controls)

ISO 20000: IT service management and IT governance

The ISO 20000 certification ensures that an organization has established, maintains and continuously improves a service management system. This standard outlines management processes designed to support organizations delivering effective IT services both internally and to clients.

The ISO 20000 standard provides guidance for service management systems in the following areas:

  • Context of the organization
  • Leadership
  • Planning
  • Support of the service management system
  • Operation of the service management system
  • Performance evaluation
  • Improvement

Leave a Reply

Your email address will not be published. Required fields are marked *

Related Posts

© 2022 Infomatics Corporation
crossmenu