KeepFlying®- An ISO 27001 Certified Organisation.
Sudarsan Lakshmikumar, 08 March 2023
KeepFlying® is proud to announce that it has been awarded the ISO 27001:2013 certification for its information security management system. This certification is an international standard designed to ensure the confidentiality, integrity, and availability of information held by organizations.
The certification process was conducted by LRQA and involved the evaluation of KeepFlying® ’s information security policies, procedures, and processes. KeepFlying® was found to be compliant with the requirements of the standard and was awarded the certificate.
The ISO 27001:2013 certification demonstrates KeepFlying® ’s commitment to data security and its dedication to protecting its customers’ information. As an ISO certified organization, KeepFlying® is committed to continuing to adhere to the standard and to maintain the highest standards of information security and privacy. Achieving ISO 27001certification is a complex process that can seem overwhelming at first However, with the right approach and resources, it is possible to complete the process successfully and achieve certification.
As a first step, we conducted gap analysis and detailed assessments which helped us understand the differences between what we currently had in place and what the ISO 27001 standard requires. This helped us identify areas that needed improvements and use this analysis to plan and prioritize the work necessary to meet the standard.
Next, we began to implement the ISO 27001 requirements, which involved developing and implementing policies, processes, controls and procedures. It is important to ensure that these are properly documented, communicated, and updated as necessary.
Our systems were regularly monitored and tested to ensure that it was working as intended. This included regular security check-ups and vulnerability scans.
Finally, we got externally audited. This involved a detailed review of our system and documentation to ensure that we met the standard.
By following these steps and putting in the necessary effort, we successfully achieved ISO 27001certification, which provided a range of benefits to the organization."