System certification: necessary qualification for enterprises
The management system is developed from the concept of quality management and inherits the essence of quality management.
System certification
- Intellectual property management system
- Energy management system
- Information security management system
- Occupational health and safety management system
- Supply chain security management system
- Food safety management system
- Environmental management system
- Information technology service management system
- Social responsibility management system
- Medical device quality management system
- Quality management system
- HACCP management system
- Business continuity management system
- HSE management system
- Road vehicle network security management system
- Compliance management system
- Anti-bribery management system
- Asset management system
- Enterprise integrity management system
- Privacy information management system
- Cloud service information security management system
- Personal identifiable information protection management system in public cloud
- Personally identifiable information protection management system
-
上海某信息科技公司ISO27001認證監(jiān)督審核
本次審核企業(yè)維持正常業(yè)務(wù)運轉(zhuǎn)需要依靠硬件、軟件、人員、信息等各類資產(chǎn),如果其中一項或多項資產(chǎn)由于某種原因無法使用,公司的正常業(yè)務(wù)就會受到影響。閱讀更多 -
北京某信息技術(shù)公司ISO27001認證審核
此次審核主要是信息安全體系的建立、實施,特別是信息安全控制措施的落實情況。抽查網(wǎng)絡(luò)設(shè)備-研發(fā)交換機閱讀更多 -
北京某云科技公司ISO27001認證監(jiān)督審核
第二次監(jiān)督審核時發(fā)現(xiàn),技術(shù)部軟件開發(fā)使用SVN管理源代碼,其備份策略要求備份頻率為每日全備份、備份數(shù)據(jù)驗證周期為1年。,但審核發(fā)現(xiàn)王某僅保留前一天的數(shù)據(jù)備份。閱讀更多 -
北京某石油科技公司ISO27001生產(chǎn)現(xiàn)場
此次審核由于質(zhì)量部門制定《訪問控制實施規(guī)范》并負責(zé)監(jiān)督落實情況,受技術(shù)水平限制,該部門對信息系統(tǒng)訪問控制的實際情況的了解僅停留在各部門的報告上,所以對具體控制措施要求不明確、針對性不強,導(dǎo)致可操作性也不夠。閱讀更多 -
四川某信息自動化公司ISO27001認證審核
審核組發(fā)現(xiàn)防病毒服務(wù)器管理人員(網(wǎng)絡(luò)管理員)溝通,認為主要的技術(shù)問題是終端電腦殺毒軟件功能模塊損壞,導(dǎo)致服務(wù)器端無法對其進行更新升級和開啟防護功能。閱讀更多