ELMO Software Limited has been recognised for its exceptional management of information security systems after winning Best Practice’s ‘Information Security Benchmark Award’. The award recognises a Best Practice client that is regarded as the benchmark of information security that other organisations should strive to emulate.
ELMO’s Information Security Manager, Carmen Nunez said winning the award was evidence of ELMO’s commitment to high security standards:
“After ELMO received ISO 27001:2013 certification in 2019, we have kept information security as a key focus by continuing to evolve our leading information security management processes. This has been driven from the Executive team who have participated in multiple information security management committees and have worked tirelessly to keep information security at the forefront of employees’ actions and considerations at all times.
“People like ELMO’s Security Architect Keith Marlow have committed many hours to our processes and structures so it’s a great honour for our team to be recognised for our work to refine and evolve these practices.
“Our approach to information security is always adapting to the new challenges and changes facing information management systems. This helps us act on our commitment to protect the information of our people, clients and third party vendors.
“ELMO’s customers are privy to sensitive information about their employees and want to know that the software they use to handle this information makes every effort possible to keep that data safe.Having ISO 27001:2013 certification is an example of ELMO’s commitment to keeping data safe.”
ISO 27001:2013 is the international standard for Information Security. It specifies an Information Security Management System (ISMS) including policies, procedures, technical and physical controls to protect the confidentiality, availability and integrity of information.
ELMO was nominated for the award because of its strong engagement across all parts of the business on information security and the commitment to information security management from the Executive and Leadership teams.
ELMO was found to have no non-conformances in both its initial receipt of the certification in July 2019, as well as in its six-monthly surveillance audit in February 2020. Surveillance audits are a mandatory component of maintaining ISO 27001:2013 certification.