Indue gains ISO certification for information security management

Indue gains ISO certification for information security management

Indue has received an International Organization for Standardisation (ISO) 270001:2013 certification for information security management — one of the most widely recognised and internationally accepted standards for the security of assets.

ISMS Continual Improvement

The ISO certification features requirements on how to implement, monitor, maintain and continually improve an Information Security Management System (ISMS) in accordance with the standard, including preserving the confidentiality, integrity and availability of information to ensure risks are adequately managed.

Indue Chief Executive Officer Derek Weatherley said the accreditation reinforces the organisation’s proven security processes and credentials against the global standard.

“This is a significant achievement for Indue, which specialises in helping customers gain competitive advantage through innovative payment solutions,” Mr Weatherley said.

“The certification strengthens our approach to information security, and demonstrates to our customers and partners that we maintain the highest levels of data security.

“We are trusted by our customers to store and process their most valuable data, so this certification provides assurance that we have all the necessary controls in place to ensure this important information is protected.

“Particularly in the context of COVID-19 where we’ve seen an increase in the risk of data security breaches alongside a surge in online transactions, we’ve continued to demonstrate our commitment to secure payment products, supported by rigorous compliance, program oversight and our transaction monitoring and protection system, Orion Financial Crimes.”

Data security has never been more important, with COVID-19 restrictions forcing many businesses to move to remote data almost overnight, significantly increasing the risk of data breaches.

By implementing and following the necessary steps to comply with the ISO 27001:2013 standard, organisations can identify, control and eliminate security risks, ultimately certifying the security practices adopted within the organisation.

ISO is an independent, non-governmental, international organisation that develops standards to ensure the quality, safety and efficiency of products, services and systems.