Datascan have been certified to ISO27001 Information Security for many years.  This year a new version of this standard, ISO 27001:2022, was introduced to reflect the changes in the threat landscape and advances in technology.  We are delighted to announce that we have achieved this new certification.

New standard for New Challenges

ISO 27001 is the internationally recognised standard that sets out the requirements for an information security management system (ISMS). Achieving certification in this further proves that Datascan has a robust framework in place for implementing and maintaining procedures that manages our information security risk.

Improved Focus on Risk

There have been several important changes in the company’s approach to information security as a result of the new ISO27001:2022 standard:

Risk management: There is now extra guidance on risk management processes to ensure that potential risks are identified and addressed.

Management’s role: There is a greater emphasis on the role of management in creating a culture of information security that is integrated into the company’s overall strategy.

Employee awareness: The company is providing extra training to employees on best practices and their responsibilities in maintaining information security.

Chain security: The company is assessing any security risks associated with suppliers and taking steps to mitigate them.

Emerging technologies: There is now guidance on ensuring appropriate controls are in place for new and emerging technologies.

Our commitment to clients

Orla Cafferty, CEO, remarked “We are thrilled to announce that we have successfully obtained certification to the new standard. As an organisation, we have always prioritised safeguarding client data. The updated requirements have further motivated us to enhance our risk management procedures and emphasise the crucial role of management in ensuring data protection”.

With our newly certified ISO 27001:2022 Datascan can assure clients that we are taking a proactive approached to managing the new risks associated with information security.  We can further prove our commitment to protecting sensitive client data at all times.