On October 31st 2021, DVS successfully achieved ISO 27001:2013 Information Security certification. This represents an important milestone for the company where information security sits at the heart of what we do.
DVS has built an Information Security Management System (ISMS) using specialists in cybersecurity with a focus on adopting security best practices. On the technology front we employ a DevSecOps approach to IT operations using best in class technology with security oversight.
Throughout the organization from business to IT operations we have set up robust processes aligned and now validated to ISO standard.
A fundamental part of achieving and maintaining information security is having the right mindset, our people from top to bottom are continuously trained and readily embrace a security first approach, without it information security becomes a real challenge.
“Attitude, mindset, and commitment to cyber security are the very fundamentals of a successful ISO 27001 certification process, they are needed before even establishing the ISMS. When I started this journey with DVS, I’ve immediately felt that people at DVS have the credentials and the skills to shine. This was an exceptional teamwork, and it shows once again that every high-demanding challenge requires the best team members.”
Fabio Genovese
IT Infrastructure & Security Manager
“To achieve ISO 27001 certification within 10 months of going live is an amazing achievement by Fabio and the team. This is a testament to the ISMS we have established, fully focused on securing the data we safekeep for our customers. Information security is an ingrained mindset right across our organization, its in our DNA and a fundamental part of what we do.”
Jaime Gimeno
Co-CEO responsible for IT Operations
ISO/IEC 27001 is an international standard on how to manage information security. The standard was originally published jointly by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC) in 2005[1] and then revised in 2013.[2] It details requirements for establishing, implementing, maintaining and continually improving an information security management system (ISMS) – the aim of which is to help organizations make the information assets they hold more secure.