Information Systems Wing (ISW) was awarded the ISO 27001 certificate in March 2011 after completing an audit conducted by the British Standards Institution. The certificate was valid for three years.

 

ISO 27001 is an auditable international standard that specifies the requirements for establishing, implementing, operating, monitoring, reviewing, maintaining and improving a documented Information Security Management System (ISMS) within an organisation.  An ISO 27001 compliance certificate provides assurance that the management system for information security is in place in an organisation and helps protect the information asset of the organisation under the ISMS.

 

In September this year, the British Standards Institution conducted a re-certification audit on ISW and assessed its provision of information security framework for the Force, including establishment and implementation of security policies and governance services.  ISW successfully passed the re-certification audit, with the ISO 27001 certificate renewed until February 2017.  

 

Re-certifying the ISMS against ISO 27001 demonstrates the Force's compliance with international standard on information security. It is an independent assurance of proper internal control and corporate governance, with the applicable laws and regulations duly observed. It also demonstrates the Force's commitment to information security.