Innov8tif Solutions Sdn Bhd (Innov8tif) today announced the successful completion of its annual surveillance audit for ISO 27001:2013 standards. The audit was conducted by external auditor Guardian Independent Certification (GIC), who is accredited by Joint Accreditation System of Australia & New Zealand (JAS-ANZ).

Through the ISO certification, Innov8tif clients and stakeholders can rest assured that the company is taking stringent risk management steps to preserve data confidentiality, integrity and availability through its information security management system (ISMS). 

Innov8tif first obtained its ISO 27001:2013 certification on 17th Jan 2021, which provides requirements for establishing, implementing, maintaining and continually improving an ISMS. The focus of the ISO surveillance audit is to ensure that Innov8tif is continuing to comply with ISO standards, fulfil applicable legislative and contractual requirements, and demonstrate continuous improvements to its processes. 

“We are glad to learn that there is zero non-conformance surfaced during the surveillance audit, thanks to the spirit of continuous compliance with standards upheld throughout the year by our teams,” says George Lee, CEO of Innov8tif.

To comply with the standards, the company has diligently implemented the following measures throughout the year:

  • SOPs and guidelines

The management team has established core standard operating procedures (SOPs) and guidelines to ensure that company duties are conducted in a professional manner that does not compromise on data and information security.

  • Communicating these standards

New recruits are required to undergo briefings to understand the importance of complying with these standards and the steps needed to uphold them. The ISMS manuals and documents are also made easily accessible internally through multiple platforms.

  • Internal audit programmes

Internal audits are conducted bi-annually across all departments, both technical and business operations, to ensure that ISO standards are being complied. 

  • Regular reviews

The global IT and cybersecurity landscape is in constant flux. Innov8tif’s management team has scheduled regular review sessions to ensure that the guidelines and procedure requirements are constantly up to date. 

“Team culture plays an important role in ensuring that the ISO standards are being properly applied at all levels of the organisation. Kudos to our new and experienced team members that truly comprehend the weight and responsibilities associated with handling confidential and sensitive databases,” George adds.

He further highlights that Innov8tif is also committed to consistently improving the quality of EMAS eKYC product suite, whilst also bolstering the customer and partner confidence within the company through increased business resilience, improved management processes and integration with corporate risk strategies.