After this year’s audit TÜV-Süd confirmed the high information security at the Bavarian software producer
CSP GmbH & Co. KG was certified again now. During the annual audit process by TÜV Management GmbH the high level of information security at the software producer was confirmed again. Customers of CSP GmbH benefit from the high quality through increasing certainty and security when planning projects as well as in the development and implementation of their solutions. Especially the security of the business processes is standardised and documented in the framework of the ISO standard. This encompasses the measures in IT infrastructure but also the consistent implementation by the individual business divisions from management to interns and external employees. CSP received the certificate for the first time in 2005. The objective of regular audits is to verify whether the defined processes are consistently followed. In addition, a repeat audit takes place every three years to extend the certificate. CSP has therefore been certified continuously since 2005. This year certification is granted for the first time according to the new standard ISO/IEC 27001:2013.
“The high data and information security is very important to many of our customers. Both in the producing industry and the finance and services sector companies are very much aware of the role of data security and comprehensive security measures. This applies also to the collaboration with service providers and suppliers. We are therefore very proud of belonging to one of the few IT service providers meeting the stringent requirements of ISO 27001,” comments Mario Täuber, Managing Director of CSP. What’s more, compliance with the ISO standard ensures constant internal quality improvements having an additional positive impact on the trusting customer relationships.
Certification is based on an Information Security Management System (ISMS). The information security of daily work is verified and documented here. At the same time, compliance regulations can be observed in this manner. The audit verifies conformity of the management system with the audit criteria. Last but not least, this ensures that the goals defined by CSP can be reached. Also, additional improvement potential can be identified in the framework of an audit. Another essential point of certification is the constant qualification of all staff members right from the beginning. “The high level of information security can only be achieved and confirmed annually by the continuous commitment and involvement of each individual employee,” says Mario Täuber.
Author: Leonie Walter, Walter Visuelle PR GmbH