Concert is pleased to announce that the Company has been audited and certified as ISO/IEC 27001:2005 compliant for Information Security Management Systems (ISMS). Our compliance audit was carried out by The Audit People and our registration number is 4020624. This recognition demonstrates our on-going commitment to information security and certifies that the company possesses the facilities, people, processes and systems to provide secure services to its supported clients in accordance with the ISO 27001 standard.
ISO 27001 compliance certification for our services, delivery systems, and procedures provides our clients with very highest levels of quality and data security assurance.
ISO/IEC 27001 requires that management:
- Systematically examine the organisation's information security risks, taking account of the threats, vulnerabilities and impacts;
- Design and implement a coherent and comprehensive suite of information security controls and/or other forms of risk treatment (such as risk avoidance or risk transfer) to address those risks that are deemed unacceptable; and
- Adopt an overarching management process to ensure that the information security controls continue to meet the organisation's information security needs on an ongoing basis.