e-Zest, a global IT services company, has recently added another feather in its cap. In what is a fitting recognition of its systems, processes and focus on excellence, e-Zest has achieved the ISO 27001:2013 certified organization.
ISO 27001:2013 is an information security standard which helps organizations improve their systems from different perspectives. It contains 114 controls, which when implemented, ensure that organizations have tight policies, systems, and procedures to maintain and enhance information security.
Security of information is of paramount importance nowadays, especially in the light of recent breaches such as the iCloud hacking scandal. In such a fragile ecosystem, clients give more credence to organizations that have the required safeguards for information security. ISO 27001:2013, an internationally acclaimed standard, becomes extremely important from that viewpoint.
Now, information has three elements - confidentiality, integrity and availability. Confidentiality deals with information access only to relevant users. Integrity means information changes made only by authorized users. Availability of information is of crucial importance to carry out the necessary tasks. An Information Security Management System (ISMS) ensures that all three elements are recorded for the identified information asset and risks are calculated based on the information. An appropriate risk treatment plan is then prepared and followed to maintain and improve information security.
Mr Rajendra Babtiwale, who oversaw the entire process at e-Zest, was extremely pleased after the achievement. He said, “This certification speaks volumes about our endeavour to have robust systems and processes in place. Information security is a key aspect for information technology companies. I am proud that e-Zest is one of the few Indian companies who have managed to achieve the ISO 27001:2013 certification.”
The certification is in addition to our previous achievements such as ISO 9001:2008 and CMMI Level 3 certifications.