PrimeXM has successfully passed its annual surveillance audit in 2020 for the third year, maintaining its ISO/IEC 27001 certification which was first awarded in 2018. The independent audit by NQA UK, a UKAS accredited firm, found no nonconformities during the audit, confirming PrimeXM adheres to the international information security standards and continuous commitment to best practices for Information Security Management System (ISMS).
PrimeXM Passes Annual ISO 27001 Certification Audit
PrimeXM’s Chief Operating Officer, Galin Georgiev explained “Information security is the single largest threat to firms that use technology extensively. As an ISO/IEC 27001 certified technology provider, our clients can be assured that PrimeXM emphasizes security at every level of the business. We take the utmost care protecting our IT infrastructure, minimizing the risk for any security breach, and preventing any adverse implications to safeguard business continuity.”
George Swann, PrimeXM’s Head of Global Infrastructure, further explained “the commercial motivation for undergoing the rigorous process for maintaining the ISO/IEC 27001 Certification was to demonstrate the transparency around PrimeXM’s security processes which includes people, processes, information technology systems and their wider significance to the risk management process. PrimeXM not only wants to tell our clients that their data is safe but also wants to show them that it is being actively managed and protected.”
Being ISO/IEC 27001 certified provides concrete evidence that PrimeXM is aligned with internationally recognized and independently verified standards.
What is ISO/IEC 27001?
ISO/IEC 27001 is widely known, providing requirements for an information security management system (ISMS), which enables organizations of any kind to manage the security of assets such as financial information, intellectual property, employee details, or information entrusted by third parties.
The International Organization for Standardization (ISO) is responsible for developing the standards but does not perform certification. The certification is performed by an accredited independent certification body.