Ascertia has implemented a comprehensive Information Security Management Policy as part of its ISO 27001 certification. Ascertia’s aim is to maintain and continually improve its Information Security Management Systems (ISMS) and to adhere to the ISMS practices which are in compliance with industry best practices for the design, development, maintenance and support of information security products.
Ascertia has implemented a comprehensive Information Security Management Policy as part of its ISO 27001 certification. Ascertia’s aim is to maintain and continually improve its Information Security Management Systems (ISMS) and to adhere to the ISMS practices which are in compliance with industry best practices for the design, development, maintenance and support of information security products.
To achieve these objectives Ascertia will ensure that:
Business requirements for information and systems are met.
Confidentiality, Integrity, and Availability of information is maintained throughout the process flow.
All corporate assets (tangible/intangible) are held in a physically and logically secure environment.
Risks to all corporate assets (tangible/intangible) are assessed and against all identified risks appropriate contingency and mitigation plans are defined.
Employees are provided with safe working environments in compliance with best industry practices.
All personnel are trained on information security procedures.
Physical, Logical and Remote access to all corporate assets (tangible/intangible) is monitored and controlled.
Business continuity plans are established, maintained, tested periodically, and updated as per the requirements.