After the final audits by Lloyds (the controlling authority), Witteveen+Bos was awarded ISO27001 certification last week for the scope 'network and system management' and privacy practices according to the AVG/GDPR. ISO27001 is an information security standard adopted by ISO, the  organisation that develops and publishes  international standards.

ISO27001 specifies requirements for establishing, implementing, executing, controlling, assessing, maintaining and improving a documented Information Security Management System (ISMS). The standard specifies requirements for the implementation of security measures that are adapted to the needs of (parts of) an organisation.

In 2019 Witteveen+Bos laid the foundations for information security within the company, in the form of an Information Security Management System (ISMS). In addition to our own interests, it is important to our clients and partners  that we, as their supply chain partner, demonstrably keep our information security in order. We will now be starting with the next phase: perpetuating the certification, possibly expanding it and increasing awareness within our organisation.