atsec瑞典获得ISO/IEC 9001:2000和ISO/IEC 27001认证

2007-01-08

Danderyd - atsec information security AB is proud to announce certification according to ISO/IEC 9001:2000 and ISO/IEC 27001. Achieving these certifications is significant, since atsec AB is yet another atsec company that has introduced an integrated management system for quality and information security and to have gone through a formal audit and certification.

The goal of external audit and certification is to improve quality assurance and processes in the company. Achieving this goal provides a competitive advantage and increases the credibility of the company. This advantage can be especially helpful to a small company, because many large organizations use formal criteria as their only way of appraising a potential new business partner.

This combined certification puts atsec Sweden on par with other atsec companies (atsec U.S. and atsec Germany), which introduced integrated management systems for quality and information security and received their ISO/IEC 9001:2000 and ISO/IEC 27001 (BS 7799-2:2002) certificates some time ago.

Staffan Persson, Managing Director for atsec AB in Sweden, who is responsible for the introduction of the management systems, commented:

“We believe that using these international standards not only validates the quality and security of our operations, it demonstrates our commitment to the services we offer. When buying a product from another company, I feel much more confident in the quality of the product if that company uses the product themselves. Similarly we want to demonstrate by our own example that it is meaningful to implement certified quality and information security.
I would also rather take driving lessons from a teacher with a driving license than from one without such credentials. Going through the process of creating and maintaining quality and information security management systems, and pursuing formal audit and certification, makes us more effective in helping customers to achieve their standards-based IT security goals.”

atsec invests heavily in the development of international standards and uses them for its own consultancy. By achieving these certifications, atsec demonstrates its commitment and confidence in these standards to its customers.

Please take a look at the certificates:

ISO/IEC 27001 (english, swedish)
ISO/IEC 9001:2000 (english, swedish)

About ISO/IEC 27001
ISO/IEC 27001 and its related code of practice, ISO/IEC 17799, describe an information security management standard for organizations that is quickly growing in popularity around the world. The basis for the standard is that an organization’s most valuable asset is its information. As a valued asset, information must be managed and protected from internal and external threats. In order to protect its information assets, the organization must develop sustainable security measures and integrate those measures into its business processes.

About atsec information security
atsec information security is an independent, standards-based IT (information technology) security consulting and evaluation services company that combines a business-oriented approach to information security with in-depth technical knowledge and global experience. atsec was founded in Munich (Germany) in January 2000 and has extensive international operations with offices in the US, Sweden, the UK, and China. atsec leverages its deep security, process, and standards expertise to consult on a wide range of IT security needs, enabling clients to establish integrated security management procedures in order to manage security risk and improve data, product, and business process reliability. atsec works with leading global companies such as IBM, HP, Oracle, Cray, BMW, SGI, Vodafone, Swisscom, Ericsson, FMV, RWE, and Wincor-Nixdorf.