Enstoa, Inc., the only company dedicated to maximizing the financial performance of the built environment, announced it has achieved ISO 27001:2013 Certification for its Information Security Management System (ISMS). This certification confirms that Enstoa has met the highest international standards to ensure the confidentiality, integrity and availability of all information assets, delivering confidence to customers that their data is secure.
To become certified, Enstoa went through a rigorous third-party evaluation process administered by the British Standards Institution (BSI), including a comprehensive review of all levels of security management throughout Enstoa’s entire organization. This encompassed all aspects of the company’s operations, including the physical protection of information, the security of products and services, and employee practices. BSI assessed that Enstoa has implemented an ongoing, systematic approach for protecting company and customer data, and found their personnel to be conscientious and knowledgeable in best practices.
Also Read: Optimad Media Relaunches as Optimal, Acquires Effective Spend
Commenting on this achievement, Jordan Cram, CEO, Enstoa, said: “Information is a strategic asset, and the security and reliability of data is crucial. ISO 27001:2013 is an excellent framework for managing and protecting information, and will help Enstoa to continually refine our approach, not just for today, but for the future.”
Cram continued: “The key to this successful implementation was recognizing that information security is an integral part of our business, not an added burden. It’s embedded in our operations and decision-making processes, and this certification provides our clients with the peace of mind that we’re committed to controls to identify and reduce risks related to information.”
Based in Switzerland, the International Organization for Standardization (ISO) was founded in 1947 as an independent, non-governmental standard-setting body, formed by representatives from 164 national standards organizations. ISO 27001:2013 is an internationally recognized system for managing the security and risks of information assets, outlining how to put an ISMS in place to more effectively manage and secure information assets.