Security in information technology was always a focus area for the company and it followed all security standards for
past several years. IPCL had followed the best practices in security and had been compliant. Therefore, IPCL decided
to go for security audit for meeting the stringent standards of ISO27001 so that it could enhance its security level
even higher. As expected, IPCL was successfully certified for meeting the requirements for ISO27001 in ISMS.
ISO 27001 certification in Information Security Management System (ISMS) implies that IPCL meets the security
standards of a framework of policies and controls that manage security and risks. On achieving this international
standard we are now sensibly protecting the confidentiality, availability, and integrity of assets from threats and
vulnerabilities. IPCL shall strive to enhance security levels on its information assets so as to reduce risks conforming
to the requirements of regulatory and even exceeding them by implementing suitable sets of controls and policies,
procedures and processes. ISO 27001, ISMS implementation follows a Plan-Do-Check-Act (PCDA) model for
continuous improvement through its processes and people. This is very much essential in today’s threat-heavy
landscape where robust information security is an absolute necessity.