Redirecting you in 3, 2, 1...
The international standard for information security certification that customers look to for assurance that a vendor can be trusted with customer data. ISO27001 takes a best practice approach to information security by addressing people, processes and technology. Having held the ISO27001 certification for more than six years, Semafone has consistently maintained this industry seal of approval.
To achieve the certification, Semafone was assessed against the framework and guidelines of the International Organization for Standardization’s information security management system (ISMS). This included measurement by an SGS approved external evaluator of Semafone’s people, processes and technology against the ISMS framework.
James Neville, Auditor at SGS noted, “The Executive Management of Semafone have created a strong organisational culture of security, through a robust and mature Information Security Management System, which ensures the delivery of secure and resilient services. Continued certification is recommended.”
“Sophisticated resilience planning, as well as robust response mechanisms, enabled the organisation to respond decisively to risks presented by the global COVID-19 pandemic. In its response, Semafone was able to mitigate the threat of normal operations being interrupted whilst also prioritising the health and wellbeing of its personnel.”
“The frictionless adoption of the remote working strategy, together with aggressive control measures taken in offices demonstrated the effectiveness of all continuity arrangements. In addition, the organisation’s capability to facilitate the audit remotely, is testament to its overall ability to maintain operations during significant disruption.”
“Continued investment in security technologies ensures the organisation is well placed to adapt to changes in the Information Security threat landscape and is able to maintain the advanced level of security afforded to clients in the delivery of secure payment services and protection of their information. The organisation’s Executive Management stays dedicated to promoting the importance of all principles of Information security which has resulted in these values becoming further embedded into the organisation’s culture.”