MRM London achieves ISO 27001 accreditation

22nd July 2010

MRM London has achieved an elite standard in managing information security, having been awarded ISO 27001 accreditation by the British Standards Institute.

The ISO 27001 standard covers all aspects of protecting data, including physical security, information control, systems security and media handling. The standard formally specifies a management system that is intended to bring information security under explicit management control.

Most organizations have a number of information security controls. However without an information security management system the controls tend to be ad hoc, or applied in response to specific situations. For instance, data security is often thought to be the job of the IT department, building security the role of facilities, while business continuity falls to somebody else altogether.

ISO 27001 accreditation brings together all aspects of organisational readiness, and puts in place an overarching set of security policies. It also sets in train a process of continuous improvement as the accreditation is audited every six months.

MRM London were awarded the standard after undergoing a rigorous audit: firstly a preliminary review of key documentation, followed by a formal compliance audit against the requirements of the standard. The third, future stage will involve follow-up reviews or audits every six months to confirm that the organization remains compliant.

Mike Cornwell, CEO of MRM London, commented: 
“Our clients are very exacting as to the standards of data protection they require. Achieving this new accreditation status means we can not only meet their expectations but give them confidence that their data, and their customers’ will be safeguarded at every step.”