XCESSION ACHIEVES ISO 27001 CERTIFICATION
IT Service Management specialist recognised by global standard for commitment to information security management
The ISO 27001:2013 standard specifies the requirements for establishing, implementing, maintaining, and continually improving an information security management system (ISMS) within an organisation. By implementing and following the necessary steps to comply with this standard, organisations can identify, control, and eliminate security risks.
Xcession, an ITSM consultancy, who help organisations improve service performance, quality and efficiency with best of breed ITSM products, are proud to announce it has achieved ISO 27001 certification following a successful audit.
The ISO 27001 certification is one of the most widely recognised and internationally accepted information security standards. Attaining it requires companies satisfy independent auditors that their business is systematic and rigorous in its approach to managing sensitive company and customer information. It also demonstrates that good processes are in place to avoid mistakes that may cause security issues.
“Our clients trust us with their data and to work within their sensitive systems. By achieving the ISO 27001:2013 certification, Xcession has shown its commitment to the highest levels of security, and demonstrated it has all the necessary controls in place to ensure this strict standard is met by its technology, people and processes,” commented Murray Sherwood, Chairman at Xcession.
By mutual agreement with the National Quality Assurance (NQA) auditor, the audit was carried out during the COVID-19 lockdown, completely remotely with much reliance on Microsoft Teams and SharePoint. This novel approach meant that a potential lengthy delay in certification was avoided, however, Xcession had to plan carefully to ensure they could provide sufficient evidence to satisfy the auditor they were compliant with the standard in every aspect.
Xcession implemented a document management and location framework within Microsoft SharePoint to index and locate all related policies, procedures and other documentation. The NQA auditor commented on how easy it was to find all relevant evidence required for certification.