The System Integrator adopts the internationally recognized model for the management of information security and implements all internal procedures for securing the data of its customers
Consys.it, a consultancy company specializing in cybersecurity, has obtained ISO 27001 certification, respecting all the requirements of the international standard which outlines the criteria for setting up and managing an information security management system, including aspects relating to logical security, physical and organizational.
The international standard ISO 27001 is closely connected to the GDPR legislation which came into force in the countries of the European Union in 2018, and was created to classify information within each company, to assign tasks and responsibilities related to data processing, carefully analyzing the closely related risks.
Consys.it, which already adopted the ISO 9001 model in 2017, to guarantee the Quality Management of the services offered (QMS), has always been dedicated to innovation and works together with its customers, following ethical and professional values. Today, it has deemed it appropriate to also obtain ISO 27001 certification not only to ensure the maximum security guarantee for the technologies adopted but to confirm that it has implemented the complete management of the policies which are respected by all internal staff.
“We are proud to have achieved this new goal - he underlines Marco Coppolino, Founder of Consys.it – a result that was possible thanks to the professional growth developed on the topic by all the collaborators, who every day are committed to satisfying the highest standards of quality and safety in services to our customers.”
To achieve ISO 27001 certification, Consys.it turned to industry professionals who contributed to identifying tasks and responsibilities both in the management of each activity and in carrying out subsequent reporting activities for each task performed. The adaptation was not limited to the simple compilation of documents, but included: periodic analyzes of the offices, analysis of the flow of data and documents, checks of the contracts distributed internally, analysis of the IT system that manages the information, analysis of the risk scenarios to analyze the reaction capabilities of the Consys.it team.
“We boast a strong specialization in the cybersecurity field and the team was already perfectly aligned with the GPDR security requirements, but ISO 27001 brings further awareness to us managers and to all our collaborators – concludes Coppolino -. The additional rules require us to carefully treat any data, starting from the registration of people who enter the office, up to the implementation of procedures that promptly destroy the information, to define the Business Continuity and Disaster Recovery procedures that we have already applied during the health emergency of these last few weeks.”
