Information Society S.M.S.A., as part of the continuous improvement of its internal infrastructure and processes following ISO 45001, which is the first global international standard for occupational health and safety, has obtained certification for both ISO 27001, which concerns information security management as well as for ISO 22301, which relates to business continuity assurance.
Beyond any doubt, the acquisition of certification by Information Society (IS) S.M.S.A. in relation with these three ISOs is an important achievement as it demonstrates in the most obvious way the company’s orderly operation, increases its credibility and prestige while, at the same time, proving that the protection of infrastructure and data of the company from cyber-attacks is a priority since it is directly linked to legal, financial and communication implications.
ISO 45001 (Occupational Health and Safety Management System)
Following the coordinated actions of the Human Resources & Payroll Department of IS S.M.S.A., the company has developed a Health and Safety Policy Management System which facilitates the management of risks related to its business activity and organizes the company’s activities, aiming at the continuous improvement of H&S conditions.
ISO/IEC 27001:2013 (Information Security Management System)
The reliability and security of network and information systems is of strategic importance for the company (i.e. IS S.M.S.A.) so that it can achieve its short-term and long-term goals, ensure the privacy of the data of customers who receive its services and, at the same time, contribute to the orderly functioning of economic and social activities at national level.
ISO 22301:2019 (Business Continuity Management System)
Business Continuity Management is a top priority of IS S.M.S.A. so that the company can, inter alia, ensure the continuation of its crucial activities in the event of an interruption, incident or crisis, return to the company’s normal operating levels as quickly as possible if the interruption cannot be avoided, reduce its operational risk and the damage that may occur regarding the reputation and credibility of the company in the event of a crisis and, finally, maximize the reliability of the company’s information resources.