Leading information security specialist offer the only ISO27001 and IS09001 certified managed mobile IT service - the highest standard for information security attainable.
February 2019- Bridgeway, one of the UK's leading information security specialists, has become ISO/IEC 27001:2013 and ISO/IEC 9001:2015 certified for the delivery of professional services, support and management of cloud hosted and on-premise systems for the management of security solutions.
ISO 27001 was developed to “provide a model for establishing, implementing, operating, monitoring, reviewing, maintaining and improving an information security management system.” It is a platform/technology neutral framework, designed around how organisations manage IT risks and systems. ISO 9001 is the international standard for quality management systems across all industries that ensures Quality Management Systems are adopted and work to improve the business. Bridgeway’s managed service Bridge Host delivers an ISO 27001- certified platform and Bridgeway’s Bridge Manage service now has ISO 9001 quality assurance management. Our Bridge Host, Bridge Manage and our deployment services therefore come with the highest level of assurance and standards. We believe Bridgeway are unique in being able to install and deliver managed services to these levels.
To achieve ISO 27001 compliance the following seven areas were examined: the context of an organisation, leadership, planning, support, operational planning and processes, evaluation process and improvements. The certification confirms that Bridgeway adheres to its own policies, objectives and procedures and its ISMS conforms to all the requirements of the normative ISMS standard ISO 27001.
Bridgeway has undertaken these certifications to continually improve our services, enhance our performances and improve our customer implementations while giving every customer assurance they have selected the right partner.
Bridgeway Technical Director Paul Jacka says: “Most companies are working towards best practice and certainly ISO standards are the best practice. However, very few take the leap due to the high standards required and the work involved in demonstrating these business practices. So for us, we not only want people to be confident that we know what we are talking about but also have proof from an external audit point of view that we not only have the best tools but are able to implement, manage and support those tools for all of our customers to the highest of standards.”
Bridgeway Managing Director Jason Holloway says: “I am extremely pleased with the work of the team in making this possible. The certification allows us to demonstrate our commitment and approach to information security best practices and we are leveraging our knowledge gained for the delivery of ISO certified services to our customers.”
For more information contact firstname.lastname@example.org or call 01223 979 090.
The ISO/IEC 27000 family of standards helps organisations keep information assets secure. Using this family of standards organisations can manage the security of assets such as financial information, intellectual property, employee details or information entrusted to them by third parties.
About ISO 27001
ISO/IEC 27001:2013 is the best-known standard in the family providing requirements for an information security management system (ISMS). ISO/IEC 27001:2013 is an international standard for IT systems that provides the policies and procedures for keeping a company’s IT assets secure. A major part of ISO/IEC 27001:2013 is keeping an organisation’s risk management strategy in check, identifying problems that may put a company’s data at risk and putting into place the processes and procedures to prevent problems occurring.
ISO/IEC 27001:2013 brings together the systems and guidelines, plus certification if a business is audited to analyse its processes. Before ISO/IEC 27001:2013 (or BS7799 as it was first known) was developed in the 1990s, organisations often had multiple services handling the data security and risk, and so ISO/IEC 27001:2013 was developed to bring all of these together under one standard.
To achieve ISO/IEC 27001:2013 compliance there are seven areas companies need to manage: the context of an organisation, leadership, planning, support, operational planning and processes, evaluation process and improvements. ISO/IEC 27001:2013 establishes a higher trust rating between organisations of different sizes since IT infrastructure will carry the same security requirements, making it easier to transfer and store sensitive information.
About ISO 9001
ISO/IEC 9001:2015sets out the criteria for a quality management system and is the only standard in the family that can be certified to (although this is not a requirement).
This standard is based on a number of quality management principles including a strong customer focus, the motivation and implication of top management, the process approach and continual improvement. Using ISO/IEC 9001:2015 helps ensure that customers get consistent, good quality products and services, which in turn brings many business benefits.
Bridgeway is an information security and risk management specialist with proven experience in delivering security solutions around mobility, cloud and security intelligence. Bridgeway offers a holistic approach to understanding business issues and matching superior solutions through our depth of marketplace understanding, consulting expertise and using trusted vendors to deliver sustainable advantage. Our vision-led approach takes products, policies, processes and people into account, helping customers overcome security and risk challenges and enhance their business. Bridgeway is a privately held, profitable UK company based in Cambridge and Falkirk.