Having recently been awarded the ISO 27001 certificate we thought we would take a moment to not only blow our own trumpet, but also to explain what this means to Rambus Ecebs and our customers. This will be the first in a series of blog posts introducing you to our industry standards and certifications.
ISO 27001 is an information security management system standard published in 2005 by the ISO (International Standards Organisation) and an endorsement of good security practice. ISO 27001 is designed to be compatible with other management standards such as ISO 9001, another certification we hold.
The security standard relates to the storage, monitoring and maintenance of data. The presence of such certification allows us to demonstrate that we have processes in place for continual monitoring and protection of third party data. Ensuring the correct procedures and planning are in place so we can be proactive and not reactive in light of data security.
We gained certification by working hard to ensure our Information security management system (ISMS) conformed to the ISO 27001 requirements and underwent an official audit.
This and our other certificates highlight the importance of industry standards, of which we like to picture ourselves as advocates of. Standards within the technology industry are of particular importance to ensure we are all singing from the same song sheet, so to speak. Standardisation allows for fair completion when tendering for business and technologically speaking allows for interoperation between systems.
As part of our process for continual improvement certificates such as this one will be updated and renewed whenever they are needed, a process managed by our Quality Manager. Being awarded the ISO 27001 is a reflection of the hard work, determination and progress in further improving the processes by which we work.
Keep an eye out for our next post introducing Common Criteria Certification.