Security in information technology was always a focus area for the company and it followed all security standards for past several years. IPCL had followed the best practices in security and had been compliant. Therefore, IPCL decided to go for security audit for meeting the stringent standards of ISO27001 so that it could enhance its security level even higher. As expected, IPCL was successfully certified for meeting the requirements for ISO27001 in ISMS.
ISO 27001 certification in Information Security Management System (ISMS) implies that IPCL meets the security standards of a framework of policies and controls that manage security and risks. On achieving this international standard we are now sensibly protecting the confidentiality, availability, and integrity of assets from threats and vulnerabilities. IPCL shall strive to enhance security levels on its information assets so as to reduce risks conforming to the requirements of regulatory and even exceeding them by implementing suitable sets of controls and policies, procedures and processes. ISO 27001, ISMS implementation follows a Plan-Do-Check-Act (PCDA) model for continuous improvement through its processes and people. This is very much essential in today’s threat-heavy landscape where robust information security is an absolute necessity.