UCMS Group Russia passed an annual audit in accordance with ISO 27001:2013

UCMS Group Russia has confirmed the compliance of the information security management system with the requirements of the international standard ISO/IEC 27001:2013 in the field of payroll outsourcing based on its own IT infrastructure. The audit was conducted by experts from DNV GL, one of the leading certification societies.

“The annual confirmation of compliance with the key ISO 27001 standard for our company is, first of all, our and our Clients’ confidence in the reliability of the information security management system of UCMS Group Russia. As a supplier and partner, we always strive for continuous improvement of the ISMS. The quality of the work of the UCMS Group Russia team in accordance with the company’s policy in the field of information security was confirmed by the auditors of DNV GL”- comments Svetlana Kiselchuk, General Director of UCMS Group Russia.

In our business information is a critical asset that needs protection. Integrity, availability and confidentiality of data are the main objectives of an ISMS

We ensure data security with a complex of technical means and organizational measures. Among them is the implementation of an information security management system, which allows us to control and manage risks in the field of information asset protection”.

As one of the leaders in outsourcing UCMS Group Russia constantly monitors the improvement of both internal business processes and the information security management system in order to meet the needs of its customers.

Obtaining confirmation of the compliance of the information security management system with the requirements of the international standard ISO/IEC 27001:2013 confirms that UCMS Group Russia is a leading provider of business process outsourcing and provides a high level of information security for its customers and partners.

ISO/IEC 27001 is an international information security standard developed jointly by the International Organization for Standardization and the International Electrotechnical Commission. The standard contains information security requirements for the creation, development and maintenance of an information security management system (ISMS), the basic principles of which are confidentiality, integrity and availability of information.

Based on the audit results, the leading auditor of DNV GL, Roman Nikishov, noted the high level of implementation of information security processes and the proactive strategy of UCMS Group Russia. “Information technology is a rapidly developing industry, and it is impossible to simply “go with the flow” while ensuring information security. It is necessary to clearly monitor the dynamics of improving information protection means and be ready to respond to threats that have not yet been implemented, i.e. to be proactive – as demonstrated by the auditee”- this is the key conclusion from the audit.

DNV GL is a leading provider of classification, certification, verification and training services. The company has existed since 1864 and is now represented in more than 100 countries around the world. DNV GL’s 15,000 professionals strive to help clients make a safe, developed and green world.

You can download the ISO/IEC 27001:2013 certificate on our website herelink.