Toplevel achieves ISO 27001 accreditation
Toplevel Computing has demonstrated its ongoing commitment to delivering
government-strength security in its solutions & services by achieving ISO 27001 accreditation
“Security is a key requirement for many of our customers, who rely on our solutions and services to handle sensitive personal and financial data.” says Jane Roberts, Toplevel's Director of Strategy. “We have always worked hard to ensure our systems deliver the level of security our customers need, Achieving ISO 27001 certification gives our customers the added reassurance and confidence that we have put in place best-practice processes around information security management that will ensure we continue to develop and deliver solutions and services with government-strength security built in.”
The ISO 27001 accreditation complements the security focus of Toplevel’s ongoing R&D programme for their COTS case management software products. This is driven by in-house security expertise and also by continual feedback and advice from government-approved CHECK-certified security specialists, who regularly test live online services based on Toplevel’s solutions.
ISO 27001 both provides an information security management framework for software development and systems implementation and also covers the delivery of hosted and managed services to Toplevel’s customers. “Customers can be confident that, in every area of our operations, we are safeguarding their ability to deliver services and keep users’ data safe,” says Roberts.
This latest accreditation is one of a number of certifications achieved by Toplevel in recent years. “For us, certification is not about being able to put a tick in another box,” says Roberts. “It is about our commitment to delivering both quality and consistency in the long term, as demonstrated by the fact we have recently been re-certified for IS9001, passing the more comprehensive three-year audit with flying colours.”
About ISO 27001
ISO 27001 is a formal set of specifications against which organizations may seek independent certification of their Information Security Management System. ISO 27001 specifies requirements for the establishment, implementation, monitoring and review, maintenance and improvement of a management system - an overall management and control framework - for managing an organization's information security risks.
About CHECK
CHECK-certified providers are approved by the Information Assurance arm of the UK Government Communications Headquarters (GCHQ) to test products for compliance to internet security standards.
