CENIT has been granted certification in accordance with the internationally recognized standard ISO/IEC 27001:2005. The scope of the certificate covers the entire Information Security Management System (ISMS) with regard to CENIT’s IT consulting, IT services and software development.

As ISO 27001:2005 is a standard issued by the International Organization for Standardization (ISO), it is now the internationally valid standard and recognized successor to the British standard BS 7799-2:2002. The standard takes into account all aspects of corporate, IT and information security as well as fundamental legal conditions. The standard also includes a definition of a security policy as a guideline with measurable security objectives.

It should be possible to apply ISO/IEC 27001:2005 to various fields, in particular:

• The formulation of the requirements and objectives of IT security
• The cost-effective management of security risks
• Ensuring conformity with laws and regulations
• As a process framework for the implementation and management of measures for ensuring specific information security objectives<
• To define new information security management processes
• To identify and define existing information security management processes
• To define information security management activities
• To be used by internal and external auditors for establishing the degree to which guidelines and standards have been implemented

An information security management system structured in line with this standard provides the basis on which to identify and overcome specific IT risks and to ensure the necessary reliability of IT systems. Certification on the basis of ISO/IEC27001 will become increasingly important in the future. This is because, in a modern company, IT security means much more than simply impenetrable firewalls and a smooth back-up solution. Rather, in the world of business, information has become a sustainable corporate value critical to the success of a company. Misuse or even loss greatly affects any company, whatever its size and may even pose a threat to its very existence.

Certificates for CENIT AG in Germany and the CENIT subsidiary in Iasi (Romania):

ISO/IEC 27001:2005 - Certificate DQS (PDF File, 66 Kbyte)