Epilog Acquires the ISO 27001 Certificate for Excellent Information Security Management
11. 10. 2022
Epilog has acquired the ISO 27001 certificate, which confirms that our operations are compliant with all legal, legislative, regulatory and contractual requirements. Our information security management system has become part and parcel of our routine business processes and our general culture of company governance, with the aim of ensuring the information security of all stakeholders and the continuity of their operations.
Cyber-attacks, hacking, data theft and a wide variety of system failures (and the consequent loss of services) are becoming daily news. As a logistics IT solution provider, the stable operation of logistics systems 24/7 is our highest priority. We are aware that any failure of a customer’s system is irreplaceable, and that information is the most valuable commodity. We are therefore fully accountable for the management of information security, both within our company and on the part of our customers.
Part of our commitment to continual development and monitoring measures and procedures to maintain the confidentiality, integrity and availability of our customers’ and our own information is demonstrated by the acquisition of the ISO/IEC 27001 certificate.
The ISO/IEC 27001 international standard defines the requirements for setting up an Information Security Management System (ISMS) in a company to enable systematic, reproducible and comparable risk assessment and appropriate controls to be carried out to maintain the confidentiality, integrity and availability of information. The fundamental objective is to protect information from falling into the wrong hands and/or being lost forever.
The ISMS as a Stepping Stone to Cybersecurity
Acquiring the certificate means that we have implemented the Information Security Management System (ISMS). This is a stepping stone to cybersecurity and ensures long-term resilience to increasingly frequent cyber-attacks.
The certificate is also a confirmation that we comply with all legal, legislative, regulatory and contractual requirements. It improves our corporate governance and ensures that the requirements of the interested parties regarding information security are met.
"As project manager of the introduction of the ISO/IEC 27001 system, I see the greatest added value for Epilog in the fact that the information security system has become part of the everyday processes of our company and the overall management structure. The design and operation of the system thus reflects the interests and requirements for information security of all stakeholders within and outside our company," Janko Primožič, Quality Manager at Epilog, said on the granting of the certificate.
The Certificate was Awarded to Us by Two Certification Bodies
We are proud to have passed two independent certification audits, so that we are now able to boast a certificate granted by the Slovenian Institute of Quality and Metrology – SIQ, as well as a certificate of the Austrian Certification & Information Security GmbH – CIS.