- September
- 2021
ATrad affirms commitment to highest standards with dual ISO certification
ATrad, the undisputed market leader in providing stock broker and trading solutions preferred by over 70% of the member firms at the Colombo Stock Exchange was recently accredited with the internationally reputed Information Security Management System certification - ISO 27001:2013 standard. This certification is in addition to the existing Quality Management certification – ISO 9001:2015 received by ATrad during the past years. ATrad received a UKAS (United Kingdom Accreditation Service) accredited certificate for the Information Security Management System from Bureau Veritas that covers the entire operation of the organization.
ISO/IEC 27001 is widely known, providing requirements for an information security management system (ISMS) and using them enables organizations of any kind to manage the security of assets such as financial information, intellectual property, employee details or information entrusted by third parties. The ISO 27001:2013 certification is considered as the highest international benchmark for information Security Management. This endorsement is a notable testament of ATrad’s commitment in providing its customers stringent security compliance in managing and securing the confidentiality, integrity and availability of their information. ATrad’s information security management system includes policies around access control, incident management, business continuity, physical security, human resources and technical procedures.
The ISO/IEC 27001:2013 certification enforces the most stringent controls to ensure ample security measures are implemented to protect the ATrad information assets. The Information Security Management System (ISMS) provides a framework for establishing information security policies, procedures and associated practices, risk assessment and risk treatment, management of information assets, human resources security, operational security, physical and environmental security, communication and operational security, acquisition and maintenance of information systems, information security incident management, vulnerability management, compliance, security in supplier management and business continuity and disaster recovery. All of these features provide a framework and a systematic approach to implement effective controls that help in maintaining the confidentiality, integrity and availability of customer data.
News