By transitioning to the new security standard, we enhanced key areas of information security, ensuring that our employees, customers, products and organization are protected against current and future security risks.
Many of the security controls and processes required by the new standard had already been implemented at Iskraemeco in previous years. As a result, the transition to the new ISO 27001:2022 standard was seamless and supervised by the Iskraemeco Group’s information security manager.
In addition to transitioning to the new version of the standard, we also implemented improvements to key security processes, ensuring higher compliance levels with cybersecurity EU regulations, local legislation and other legislative requirements.
With the newly acquired ISO 27001:2022 security certificate, Iskraemeco continues to follow its established security strategy, ensuring the highest levels of confidentiality, integrity, and availability of information within the organization and in the products, offered to our customers.
Iskraemeco holds security certifications for ISO 27001:2022, ISO 27017:2015, and ISO 27018:2019.
Key areas of improvement
Information security governance
- Improvements in the methodology and processes for managing information security risks.
- Implementation of new security controls and improvements to existing controls in the management of external suppliers.
Cybersecurity
- Deployment of new technical security mechanisms to detect internal and external threats and reduce the risks of adverse consequences.
Information security in Iskraemeco products
- Improvements in processes ensuring security and privacy by design in product development and principles of secure development of solutions.
Physical security
- Improvements in physical security control systems to detect and prevent unauthorized access to premises of our organization.
