Sitoo achieves ISO 27001:2022 certification
In the spring of 2023, Sitoo was able to pass independent security reviews and receive the ISO 27001:2022 certification within 7 months – a very good result according to Sitoo Chief Information Security Officer, Magnus Sparf.
ISO 27001 is the world’s best-known standard for information security management systems (ISMS), and defines the requirements an ISMS must meet. The ISO 27001 standard provides companies with guidance for establishing, implementing, maintaining and continually improving an information security management system.
Conformity with ISO 27001 means that an organization or business has put in place a system to manage risks related to the security of data owned or handled by the company, as well as respecting all the best practices and principles enshrined in this International Standard. To pass the ISO 27001 certification audit, all of these controls need to be proven to an external auditor. Sitoo chose Prescient Security, a global top 20 independent audit and penetration testing company.
We pursued ISO 27001:2022 to demonstrate and show independent evidence of the strength of our security practices to potential customers.
“We pursued ISO 27001:2022 to demonstrate and show independent evidence of the strength of our security practices to potential customers. We know firsthand that it’s important to be able to, without discussion, show existing and potential customers that we have things in order when it comes to security” – Magnus Sparf, Chief Information Security Officer.
Read the whole interview with Magnus Sparf to learn more about ISO 27001 and security in retail.
Read the interview