Chippenham, Wiltshire – 12 June 2015 – Arkivum, the provider of ultra-safe and secure, long-term, large-scale, digital data storage and archive services, is proud to announce that it has just become fully certified and audited to the ISO 27001:2013 Standard in Information Security Management.
Arkivum takes information security seriously. So seriously that it has spent significant time and money enforcing security and using best practice to guarantee that both its own assets and those of its customers are secure and safe.
Information security is built in
From day one, information security has been built into all aspects of Arkivum’s business service. Having put in place information security policies and procedures, Arkivum recognised the importance of being externally audited and certified to an international standard to affirm that it was taking a robust approach. This standard is ISO 27001, an internationally recognised best practice framework for information security management systems.
Arkivum achieved certification to ISO 27001:2005 in June 2012, and has rigorously maintained certification since then and transitioned to the 2013 version of ISO 27001 in June 2015. This is via the ISO accredited certification body Certification Europe.
Scheduled internal audits
In addition to the six-monthly audits by Certification Europe, Arkivum is regularly audited by its prospects, customers and partners. Arkivum also regularly performs scheduled internal audits on all aspects of its Information Security Management System (ISMS); including audits of key suppliers. In particular all data centres and tape storage providers are audited by Arkivum as part of the selection process and then re-audited every two years.
All audits have been positive. Outputs gleaned from these audits are used as part of the on-going maintenance and improvement of Arkivum’s ISMS.
Jim Cook, CEO of Arkivum, comments:
It was vital that we updated our ISO certification to the latest version, as this is a critical component of Arkivum’s business and strategy and is central to how we manage and interact with the data that our customers entrust with us. It is a top priority and part of our ongoing commitment to ensuring the security of customer data so that we can continue to guarantee the integrity of that data.
The ISO/IEC 27000 family
The ISO/IEC 27000 family (also known as ISO 27000 series) consists of mutually supporting information security standards to provide a globally recognised framework for best-practice information security management; the main standard being ISO 27001.
ISO 27002 is the main code of practice and is the one that has been used by Arkivum in the development, maintenance and continuing improvement of its ISMS.