Deloitte Security and Forensic Lab Brussels has attained ISO 27001 certification
Deloitte has attained the ISO 27001 certification for the services that are rendered from Security and Forensic lab in Brussels. The Deloitte Security and Forensic lab in Brussels is used in engagements dealing with very sensitive data and systems of Deloitte clients. This type of engagements includes scanning of a client’s network, testing of a client’s intrusion detection procedures, analysis of digital evidence, forensic investigations, analyzing data for fraud patterns, and providing evidence of application and process weaknesses. Clients and business partners can now rely on an independent verification that Deloitte’s Information Security Management System (ISMS) is in accordance with industry-respected best practices.
The British Standards Institution (BSI) certified that Deloitte operates its Information Security Management System in compliance with the requirements of ISO/IEC 27001:2005 for the scope of the Deloitte Security and Forensic lab in Brussels.
Due to the nature of some of our engagements, the data that is collected and processed is no longer under control by the client. Deloitte EMEA’s Security & Privacy Services leader comments: “we acknowledge the risk of reputational or financial loss to the client should this data be disclosed. That is why we have adopted a strict code of conduct and put in place stringent access control, continuous monitoring and incident response procedures. Deloitte adopted ISO 27001 to operate an Information Security Management System that ensures continuous vigilance, management commitment and drive for excellence. Our unique positioning will attract clients that appreciate the importance of their information assets and the trust relationship with their business partners”.
The certification is an example how a leading consulting firm practices what it preaches. Deloitte assists several organizations, both in private and public sector, to manage their information security efficient and effectively. The ISO 27001 is very often adopted as enabler to improve information security, with our without certification objectives.