Group Technology Solutions (GTS), the Information Technology services division of An Post, and Post.Trust, a subsidiary of An Post offering advanced digital security solutions, have successfully achieved certification to international Information Security Standard ISO 27001. This follows an external audit conducted by Certification Europe, a body accredited by the Irish National Accreditation Board (INAB) the statutory body for quality standards in Ireland. Furthermore Post.Trust has retained its existing accreditation as a qualified Certification Services Provider (CSP) in compliance with the requirements of the EU eSignatures Directive EU 1999/93/EU.
Certification to ISO 27001 enables An Post to prove to its clients and other stakeholders that we are comprehensively managing the security of information held in our possession.
Information is a valuable asset and it needs to be protected and managed as carefully as any other tangible asset particularly when being managed on behalf of customers. Karl Coffey, Chief Enterprise Architect, An Post GTS said: “The ISO 27001 standard is the most popular and widely used global assessment framework for Information Security
Management. It is also increasingly referenced in commercial tenders and compliance information requests from potential and existing corporate customers. Participation in this programme enables us to provide independent assessment of the maturity of our IT security management system to the Board, our customers, shareholders and other key stakeholders.” For example in the case of the Prize Bonds Draw system, the Prize Bond Company can be assured that the system deployed meets the highest international security standards.
Additionally, financial institutions such as AIB for which An Post delivers a range of services can also be satisfied that the level of security in place meets recognised industry standards without having to conduct an independent audit. Existing and prospective customers that An Post wishes to target for new business opportunities can be similarly reassured with regard to this increasingly important aspect of doing business securely.
Post.Trust, a Certification Service Provider (CSP) has successfully maintained its Information Security Management accreditation. Post.Trust has also successfully retained compliance with the EU Directive 1999/93/EC for eSignatures, following a full certification audit by Certification Europe.