With our history of long-term, high-trust client relationships stretching back more than 20 years, it’s clear that Mitrais takes our commitment to staying at the forefront of service providers very seriously. Data Security is now a hotter topic than ever, and many of our partners are looking to Mitrais to show that we “walk the walk” in this important area.
Mitrais is up for the challenge! In 2019, Mitrais engaged TÜV Rheinland Group, an internationally accredited technical services certification body based in Germany, to conduct the audit necessary to achieve certification in ISO 27001:2013 for Information Security Management Systems. Following the exhaustive process, Mitrais was confirmed as achieving the rigorous standards demanded.
ISO 27001 is the international standard which is recognised globally for managing risks to the security of information we hold. Certification to ISO 27001 standard allows us to prove to our clients and other stakeholders that Mitrais is managing the security of their information to the highest standards. ISO 27001:2013 (the current version of ISO 27001) provides a set of standardised requirements for an Information Security Management System (ISMS). The standard adopts a process-based approach for establishing, implementing, operating, monitoring, maintaining, and improving Mitrais’ ISMS.
But achieving ISO 27001 certification, although an amazing achievement in itself, is not the end of the process. The certification is granted on a 3-year basis, but to maintain certified status during that period Mitrais is required to submit to an annual Surveillance Audit by an external auditor that ensures that these exacting standards are being maintained.
In early October 2020 Mitrais CTO, Hartoyo Barlian, announced that Mitrais had successfully completed the first of these Surveillance Audits. As Hartoyo says, “We were aware from the start of the need to stay on top of the requirements. To manage this, we instituted a suite of regular monitoring, including network status reporting, vulnerability assessments, license assets reporting, security process reviews and identification of opportunities for continuous improvement. This latest audit took several days to complete, and I am pleased to report that it demonstrates that Mitrais’ systems and processes remain robust to international standards”.
For Mitrais partners and clients, this certification continues to deliver very tangible benefits. For those that are required to demonstrate ISO 27001 (often a critical regulatory requirement, particularly in Medical and Finance Technology verticals), having an accredited software development partner like Mitrais reinforces their credentials. For others who deal with sensitive or confidential information, Mitrais’ continued accreditation is just one more demonstration of our commitment to providing world’s best services that add value to their businesses.
Congratulations to Hartoyo and his team for maintaining our world’s best standards and delivering for our clients and partners.