ISMS-AC in Japan has confirmed that Lloyd’s Register (LR) is now accredited to ISO/IEC 27006:2015, following a recent transition audit. ISO/IEC 27006:2015 specifies requirements and provides guidance for bodies providing audit and certification of an information security management system (ISMS).
LRQA - the accredited body for ISO/IEC 27006:2015 and a member of the LR Group - can now deliver associated certification services in the region and this further strengthens the global accreditation issued by the United Kingdom Accreditation Service (UKAS). ISO/IEC 27006 provides guidance on the management of an information security management system (ISMS) audit programme, the conduct of internal and external ISMS audits in accordance with ISO/IEC 27001 and the competence and evaluation of ISMS auditors.
Commenting on this latest development, Duane Wood, Marketing Director at LR Management Systems & Inspection Services said, “We are delighted to have been awarded this additional accreditation from ISMS-AC. The security of organisational data - either proprietary or that of clients - is a major concern to consumers and companies alike, fuelled by a number of high-profile cyber attacks. Cyber is a key area of strategic focus for our organisation; in addition to certification and training against ISO/IEC 27001, LR also offers a range of cyber security services to the marine and offshore industry as well as many other business improvement services to meet the specific needs of our clients, irrespective of their size, sector or geographical location.”
Where data contains personal, financial or medical information, companies have both a moral and legal obligation to keep it safe from cyber criminals. “That’s where International Standards like the ISO/IEC 27000 family come in, helping organisations manage the security of assets such as financial information, intellectual property, employee details or information entrusted to them by third parties,” summarised Wood.
With all the major ISO standards being revised, LR remains at the forefront of communicating the changes with a wealth of resources to help organisations transition to the revised standards.