Big news today—NordPass information security management system has received the ISO/IEC 27001:2017 certification. The International Organization for Standardization, better known as ISO, is an independent organization that develops a variety of standards to ensure the quality, safety, and efficiency of products, services, and systems. But why does this ISO certification matter? And what is it, exactly? Below, we give a short overview.
Contents:
What is ISO?
The origins of the International Organization for Standardization go back to 1946, when 65 delegates from 25 countries met in London to discuss the post-war future of International Standardization. The following year, the organization came into official existence as an international body for standardization. Over the years, ISO evolved to include 165 member countries, almost 800 technical committees, and more than 23,0000 international standards. ISO covers almost all aspects of technology and business, from food safety to computers and agriculture to healthcare. Essentially, ISO is there to ensure that various products as well as services are safe, reliable, and high quality.
What does it mean to be ISO-certified?
It is important to note that ISO does not certify companies itself. Simply put, to be ISO-certified means that a company, its services, management systems, or products have been thoroughly audited by an independent third party. During the audit, the independent third party ensures that the company conforms to the standards set by ISO. The certification means that the processes within the certified company work effectively and efficiently.
There are a variety of ISO certifications that are industry-specific. They range from social responsibility to risk management, occupational health, and safety. Each certification has its specific criteria and set of standards and is classified numerically. For instance, ISO certification for Information Security Management System is ISO/IEC 27001:2017.
What does ISO 27001 certification mean for NordPass Business?
NordPass Business’s Information Security Management System has been certified according to the ISO/IEC 27001:2017 standard. This particular standard ensures the continual improvement, development, and protection of information by implementing appropriate risk assessments, appropriate policies, and controls.
At NordPass, we strongly believe that the ISO 27001 certification is beneficial internally as well as externally. We see it as a way to further build trust with you — our users. Because the ISO/IEC 27001:2017 standard is devised to ensure information confidentiality, integrity, and availability, by getting certified we hope to help our users achieve a little peace of mind without just taking our word for it.
Furthermore, it is important to highlight that the work does not stop the moment we become ISO 27001 certified. To maintain a certified status, we will need to submit our Information Security Management System for regular audits.
Security is at the center of everything we do here at NordPass Business. We will continue the effort to provide our users with the password manager they deserve.