ShipServ, a maritime e-procurement platform, has announced that it has won ISO 27001 certification in recognition of the company’s strategy to continually develop its information security practices in line with industry best practice.
This certification also compliments the exist[ds_preview]ing controls the company has in place including regular external penetration tests, independent reviews of its IT operations, and constant review of potentially valuable security standards such as NIST and CSE.
According own information this full certification acknowledges ShipServ’s ability to deliver trusted data storage and processing services that enable its customers to trade in a secure, reliable, timely, and accurate way. In addition, it shows that ShipServ is well prepared to comply with the EU GDPR which comes into force in May 2018, and which places strict regulations on any company that processes personal information of any European citizen.
Implemented in 2013 by the International Organisation for Standardisation, ISO 27001 is one of the most recognised global standards ShipServ stated. It provides organisations with the opportunity to demonstrate excellence and prove best practice in establishing, implementing, maintaining and continually improving an information security management system.
Moreover, the standard provides a framework for setting out policies and procedures for the effective management of confidential and sensitive information, as well as the application of information security controls.
To gain this recognition, ShipServ had to demonstrate that it possesses a comprehensive suite of information security controls, as well as successfully show the effectiveness of the management system to ensure these controls remain efficient and continue to meet the needs of its customers.
