PRZOOM - /newswire/ -
Austin, TX, United States, 2007/06/26 - Six atsec information security GmbH employees recently passed the test to become ISO/IEC 20000 auditors and have been certified by the itMSF (IT Service Management Forum)..
Information security management is one of atsec’s core competences. atsec constantly builds its specialized knowledge in the international standards that deal with information security and IT management, including the ISO 27000 family of IT security standards and important national standards like the German Grundschutzkatalog.
atsec’s competence in planning and implementing security management systems has been demonstrated in many successful projects. In addition, atsec uses the practical experience gained from these projects to advance the standards by active participation in ISO workgroups.
Integration of quality and security management systems is a central challenge for any enterprise seeking a workable, consistent solution. atsec was one of the first enterprises to implement an integrated management system for quality and information security, achieving simultaneous certification according to ISO/IEC 27001 and ISO/IEC 9001 in 2006. atsec offers consulting services to enterprises pursuing a similar rational solution.
atsec continues to build knowledge and experience in other relevant standards, including ISO/IEC 20000, the international standard for IT service management. atsec has long practiced IT service management according to ITIL, and many atsec employees are trained as ITIL service managers. Formal certification of those experienced professionals as ISO/IEC 20000 auditors was the next logical step.
As additional IT security relevant standards emerge, atsec will continue to expand its competence. For example, new standards for IT management are currently being developed in risk management and emergency planning (disaster recovery). atsec offers maximum investment security to its customers by considering these emerging standards in its consulting activities today, as well as ensuring that i staff acquires both practical expertise and qualification on those standards as opportunities develop.
About ISO/IEC 20000
ISO/IEC 20000 (iso.org) is the first worldwide standard specifically aimed at IT Services Management. It describes an integrated set of management processes for the effective delivery of services to the business and its customers. ISO/IEC 20000 is aligned with and complementary to the process approach defined within the IT Infrastructure Library (ITIL) from the Office of Government Commerce (OGC) in the UK.
About atsec information security
atsec information security is an independent, standards-based IT (information technology) security consulting and evaluation services company that combines a business-oriented approach to information security with in-depth technical knowledge and global experience. atsec was founded in Munich (Germany) in January 2000 and has extensive international operations with offices in the US, Germany, Sweden, the UK, and China. atsec leverages its deep security, process, and standards expertise to consult on a wide range of IT security needs, enabling clients to establish integrated security management procedures in order to manage security risk and improve data, product, and business process reliability. atsec works with leading global companies such as IBM, HP, Oracle, Cray, BMW, SGI, Vodafone, Swisscom, RWE, and Wincor-Nixdorf.