Fidectus Insights

ISO Standards. Fidectus has been successfully ISO 27001 recertified 🎉

Written by Fidectus | Mar 15, 2024 9:53:55 AM

On 14.03.2024 Fidectus confirmed its ISO 27001 certification for the second time! 🤝

But what does such certification mean? Below we combined some 101 information about The ISO standards and the ISO 27001 standard in particular.

What are the ISO standards?

ISO states for International Organization for Standardization.

It was created in 1947. As of January 2024, it has issued more than 25 000 international standards. Standard in this case is a formula for "how to do something the best way", which was developed and agreed upon by groups of experts from around the world.

Every year 170 national standards bodies, representing their own country, get together for a General Assembly to develop strategic goals for ISO. A central secretariat based in Geneva coordinates their actions.

Each ISO standard undergoes a review procedure every 5 years to ensure they are still up to date.

Structure

The ISO standards are combined into families: ISO 14000 family (Environmental responsibility); ISO 22000 (Food safety), ISO/IEC 27000 (also known as the 'ISMS Family of Standards'), and others.

The most popular standards from the families are: 

▫️ ISO 9001 (Quality of the products and services)

▫️ ISO 14001 (Environmental management systems)
▫️ ISO 27001 (IT and cybersecurity, Information Security)
▫️ ISO 45001 (Employee safety and health), etc.


What is ISO 27001?

ISO 27001 certification is an internationally recognized standard for information security management systems (ISMS). It provides a framework for organizations to set up, implement, maintain, and improve their ISMS in the future.

Namely, it encompasses:

  • Framework: Provides a systematic approach for managing sensitive information.
  • Risk Management: Identifies and assesses information security risks.
  • Controls: Implements security controls to mitigate risks effectively.
  • Compliance: Ensures compliance with legal and regulatory requirements.
  • Certification: Allows organizations to certify their ISMS to demonstrate compliance.
  • Continuous Improvement: Promotes ongoing enhancement of information security measures.

By achieving ISO 27001 certification, organizations demonstrate their commitment to protecting the confidentiality, integrity, and availability of their information assets.

Why is it important to be ISO 27001 compliant?

  • Enhanced information security: ISO 27001 provides a structured approach to managing information security risks, ensuring that organizations implement robust controls to protect their sensitive data and information assets.

  • Effective risk management: By adopting a risk-based approach, the organizations can mitigate information security risks, reducing the likelihood and impact of security incidents and data breaches.

  • Asset Management: classification, ownership, and protection requirements of the information assets.
  • And what is very important is that ISO 27001 promotes a culture of continual improvement in information security management. Organizations are required to monitor and review the performance of their ISMS regularly, identify opportunities for improvement, and take corrective and preventive actions as necessary to enhance the effectiveness of their information security measures.

▶️ That is why maintaining ISO 27001 certification is a testament to Fidectus' dedication to keeping our clients' information safe and upholding the highest standards of professionalism and integrity.

The ISO inspector noted that Fidectus has up-to-date structures and processes, even surpassing the standards at various levels. This ensures current compliance as well as provides for the company's future growth.

Also, it was recognized that at Fidectus, ISO practices are not only "rules on paper", but an integral part of the daily routine. So we are very proud to share this achievement!

We extend our sincere appreciation to our clients, partners, and employees for their continued support and collaboration as we strive for excellence in everything we do.

 

About Fidectus

Fidectus’ focus is post-trading done right! It developed a Global Energy Network (GEN) that comprises three OTC post-trading hubs. Each hub has a set of tools to improve, unify, and automate settlement, confirmation, and regulatory reporting processes. Fidectus’ partner ecosystem maintains multiple native interfaces with ETRM vendors such as Endur, Allegro, Triplepont, Molecule, and others. Using the hubs results in reduced time to confirm and settle, increased trading performance, and enhanced decision-making.

 

For more information about Fidectus and its ecosystem partners, please get in touch with info@fidectus.com or visit www.fidectus.com.