February 23, 2018

ActioNeters worked together to successful maintain ISO certification

Chris E, Andy P, and Michael C pose with their Certificates of Appreciation for their work towards recertification

By Chris E

ActioNet is committed to the delivery of exceptional IT services and the preservation of a safe computing environment. As an ISO-certified organization, ActioNet stands firmly behind mature IT process while passing the benefits of industry-leading IT business practices to our customers and employees.  ActioNet maintains an Information Security Management System (ISMS) and a Service Management System (SMS) in accordance with ISO/IEC 27001:2013 and ISO/IEC 20000:2011. The length of the ISMS and SMS certification cycle is 3 years, with each system requiring annual internal and external assessment against its applicable ISO standard.

ISO/IEC 20000:2011 is a global standard that describes the requirements for an information technology Service Management System (SMS). The standard was developed to mirror the best practices described within the IT Infrastructure Library (ITIL) framework. It specifies requirements for the service provider to plan, establish, implement, operate, monitor, review, maintain, and improve an SMS. The requirements include the design, transition, delivery, and improvement of services to fulfill agreed service requirements. Based on industry-recognized ITIL best practices, the ISO/IEC 20000 standard focuses on providing the highest level of IT Service Management, reinforcing ActioNet’s dedication to providing world-class services to our customers. ActioNet’s SMS was successfully recertified on May 15, 2017 and recommended for continuation on February 9, 2018.

The ISO/IEC 27000:2013 family of standards helps organizations keep information assets secure. ISO/IEC 27001 is the best-known standard in the family and provides requirements for an information security management system (ISMS). An ISMS is a systematic approach to managing sensitive company information so that it remains secure. It includes people, processes, and IT systems by applying a risk management process. ActioNet’s ISMS was designed to manage the security of assets such as financial information, intellectual property, and employee details or information. In addition to the requirements related to Information Security best practices, the ISO 27001 standard also requires ActioNet to follow industry standards for Risk Assessment and Mitigation. ActioNet’s ISMS was successfully recertified on February 9, 2018.