MacRobert Attorneys and ISO 27001
We are proud to announce that MacRobert Attorneys has been fully ISO 27001 accredited.
MacRobert Attorneys made the strategic decision to pursue ISO 27001 certification to show our commitment to information security in an ever-increasing digital world.
This certification provides MacRobert Attorney's prestige, credibility and transparency in our information security processes.
What is ISO 27001?
ISO 27001 is the leading international standard for regulating data security through a code of practice for information security management systems (ISMS). It's a model of working for frameworks surrounding the legal, physical and technical controls that are used when processing an organisation’s information risk management.
The standards covering different aspects of information security including information security management systems, information technology, information security techniques, and information security requirements. It also provides complete guidance, covering everything from establishing and implementing the framework to the way in which it is operated and monitored. It even recommends ways to maintain and improve our systems.
ISO 27001 works using a top-down, risk-based approach. It generates scope, taking into account the context of the organisation, planning and analysing processes, current performance and addresses the findings to show where improvements can be made.
Why is it important?
Information security is a business problem, not an IT problem. Risk-based approaches are vital for modern information security effectiveness.
There are many ways to achieve security risk management, so a good standard like ISO 27001 puts formalities in place to ensure the right thought processes were followed and captured when the inevitable breach is realised.
Not only do the standards help ensure that a business' security risks are managed cost-effectively, but the adherence to the recognised standards sends a valuable and important message to customers and business partners
What benefit do our partners gain from our ISO 27001 certification?
Certification is fundamentally about providing trust and confidence – and these can provide a competitive edge. In today's world, our customers, business partners and shareholders want to be sure that you're not putting them or their businesses at risk by not having appropriate safeguards in place around information and technology-enabled business assets.
Boards want this confidence; management wants this confidence; and certification is a solid way of showing that we have invested and continue to invest to maintain appropriate levels of security based on acknowledged risks.