When you are in the business of providing the highest quality services to your partners, as Mitrais has been for more than 20 years, it is vital that you go the extra mile to keep yourself at the cutting edge.
With Mitrais’ well-known mantras of “long-term high-trust relationships” and “Continuous Commitment”, we recognised that information security has become more and more important in the last few years. Many of our partners are being required to demonstrate leadership in this area, so it made good sense for us to have our systems and processes, developed over decades, examined by independent experts to validate our confidence in them.
Mitrais engaged TÜV Rheinland Group, an internationally accredited technical services certification body based in Germany, to conduct the audit necessary to achieve certification in ISO 27001:2013 for Information Security Management Systems. We are pleased to announce that this audit process is now complete, and that Mitrais is accredited in this field.
ISO 27001 is the international standard which is recognised globally for managing risks to the security of information we hold. Certification to ISO 27001 allows us to prove to our clients and other stakeholders that Mitrais are managing the security of their information to the highest standards. ISO 27001:2013 (the current version of ISO 27001) provides a set of standardised requirements for an Information Security Management System (ISMS). The standard adopts a process-based approach for establishing, implementing, operating, monitoring, maintaining, and improving Mitrais’ ISMS.
The accreditation process included detailed audits of how Mitrais protects client and employee information, manages risks to information security effectively, and achieves compliance with international standards.
Mitrais’ Chief Information Officer, Mr Hartoyo Barlian, explained that this certification is a very significant step. “The audit and investigation associated with this certification has thrown our structures and processes open to examination by internationally recognised experts, and at the same time given us the opportunity to revisit how we do things with fresh eyes” he said. “We have learned a lot throughout the journey” he continued, “and it is great to know that our framework of policies and procedures, including intensive reviews of all the legal, physical, and technical controls involved in Mitrais’ information risk management processes, stands up to the most rigorous and demanding scrutiny.”
For Mitrais partners and clients, this newest certification brings a number of very tangible benefits. For those that are required to demonstrate ISO 27001 (often a critical regulatory requirement, particularly in Medical and Finance Technology verticals), having an accredited software development partner like Mitrais reinforces their credentials. For others who deal with sensitive or confidential information, Mitrais’ accreditation is just one more demonstration of our commitment to providing world’s best services that add value to their businesses.