Press Releases

Against Hacker Attacks and Data Loss: Information Security Is a Valuable Asset

13. March 2020 | Friday

This year, we were once again certified in accordance with ISO/IEC 27001:2013 for information security management systems (ISMS). We were successfully certified for the first time back in 2017 - in 2020, we will now be recertified for another three years. In doing so, we want to demonstrate that the security of information, data and systems is absolutely central to our corporate culture.

Caption (from left): Philippe Haug, Elias Freitag and Waldemar Gassmann from IT are delighted with the recertification

In times of hacker attacks and digitalization, companies must be able to rely on their information technology. Nevertheless, news of companies that have fallen victim to aggressive malware continues to circulate around the world. With catastrophic consequences: production downtimes lasting days or weeks or company shutdowns can cause major damage.

What does ISO/IEC 27001:2013 stand for?

ISO is an international standard that stands for information security in companies. A catalog of requirements for the secure and smooth introduction of the information security management system is the central element. As every company has different requirements, the standard takes individual characteristics into account.

How does recertification take place and what are the benefits?

In 2017, the current status and a risk analysis of our security system were recorded. The measures derived from this are intended to close any gaps and further improve current processes. During the recertification process, an inventory was carried out again and potential improvements were identified by auditors. "The recertification can be described as a continuous improvement process," explains our Information Security Officer Elias Freitag.

Among other things, the certification minimizes liability and business risks, optimizes process and IT costs, increases competitiveness and improves the protection of confidential data against misuse, loss and disclosure. Initial positive changes were quickly identified: "The risk potential has been significantly reduced and information security has gradually improved," reports Elias.

What measures have been implemented?

New security standards in e-mail traffic as well as client and server systems, training for employees and regular audits have become a regular feature of information security. All doubleSlash employees were part of the implementation process right from the start: "Together as a team, all employees contribute to the successful and sustainable implementation of the ISMS—the system is only successful if everyone has the same goal in mind and lives the implementation. Colleagues regularly contribute ideas for optimization," says Elias enthusiastically.

Back