ISO 27001

ISO 27001 is part of the International Standard Series which can be applied to all organizational systems with a focus on information security. PT SUCOFINDO’s ISO 27001 service uses a systematic approach to managing sensitive company information that has the following flow of certification:

Application

• Documenting and implementing a management system according to the scope
• Fill out the application form

Stage 1 Preliminary Audit

Ensuring documentation complies with standard requirements and company readiness for the next stage

Stage 2 Certification Audit

Review and ensure the effectiveness of the implementation of the management system

Audit Follow Up

• This process will be carried out if a Major Non-Conformity is found in the Compliance Audit
• Ensuring that the company implements corrective and anticipatory actions

Certification Granted

Certificates will be issued based on the standards applied and the scope of application

Benefit

• Providing trust and assurance to clients or partners that the organization or company already has a good Information Security Management System according to international standards.
• Ensuring that the organization or company has controls related to information security in its business process environment that allows for disruptions or risks that can disrupt the organization’s or company’s business processes.
• ISO 27001 calls on organizations or companies to continuously improve company information security. This helps the organization or company to be able to determine the proper information security process according to the needs of the organization or company based on existing risks.
• Improve the image and reputation of the company in the eyes of stakeholders.