Zaizi Ltd, an award winning open source software consultancy, has achieved certification of its information security management systems (ISMS) to ISO 27001 with Bureau Veritas.
ISO/IEC 27001 (ISO 27001:2013) is the international standard that describes best practice for an information security management system. The certification demonstrates that Zaizi is following internationally recognised information security best practices.
During a programme of coordinated activities lasting 6 months, Zaizi successfully designed and implemented its ISMS – establishing a comprehensive security baseline for its enterprise. This together with changes to its organisation to direct and control the on-going programme; training of all staff, and; the introduction of additional security technologies, Zaizi has now established a firm basis for the ongoing preservation of confidentiality (privacy), integrity, and availability of its and its customers business critical information assets.
The scope of the certification covers Zaizi’s global operations based from its offices in London (UK), Seville (Spain) and Colombo (Sri Lanka). Certification encompasses all of Zaizi’s main business activities, specifically:
- Provision of IT consulting
- Professional services
- Project Management
- Software development
- Business solutions and cloud services
David Hopkins, Zaizi’s Chief Information Security Officer said:
“This accreditation recognises that we take information security seriously and is considered in all of our business activities. It demonstrates to our customers that we value their information and take all the necessary steps to manage and protect it. Knowing that we have engineered a comprehensive ISMS with supported monitoring and control measures, allows us to operate in full confidence.”
As a G-cloud 6 supplier, Zaizi has worked extensively within different Government departments at a local and national level, as well as other sensitive industries such as Finance and Healthcare. This accreditation shows the dedication to ensuring security principles are adhered to across the company and our customers’ information is dealt with appropriately and securely.
Balancing act: The art of modernising secure legacy systemsPublished on: 8 December, 2023
User-centred design: The key to security positive culturePublished on: 30 November, 2023
Why I’m passionate about patient-centred digital health and social carePublished on: 22 November, 2023
GitHub Copilot: Exploring AI pair programming toolsPublished on: 15 November, 2023