We are proud to announce that we have successfully passed our ISO 27001 surveillance audit again. In the IFS Database, we store data from certified sites, certification bodies, auditors, consultants, and other stakeholders. At IFS, we know this involves a great responsibility. 

To ensure the highest level of security, we continuously improve our Information Security Management System (ISMS). Each year, KPMG Cert GmbH, a subsidiary of KPMG Deutschland, audits our ISMS. This year, we passed the audit and transitioned seamlessly to the latest version of ISO 27001: the DIN EN ISO/IEC 27001:2022. 

ISO 27001 is the international standard for an organisation’s ISMS. Its purpose is to protect the confidentiality, integrity, and availability of information and systematically minimise risks. 

An ISO 27001 audit evaluates the implementation of processes and measures according to this standard. The audit involves a review of documentation, an assessment of the management system’s compliance, an on-site inspection, and a verification of ISMS implementation. 

The audit results identify any non-conformities, highlight areas for improvement, and may lead to a follow-up audit if necessary. A successful certification demonstrates that an organisation maintains high-security standards, enhancing trust among customers and business partners. 

A regular training programme ensures that IFS employees stay informed about the latest developments and potential risks in information security. The auditors were particularly impressed by the employees’ commitment to embedding information and data security into their daily routines. Achieving ISO 27001 compliance is a team effort and reflects a significant organisational achievement. 

Special thanks go to our IFS Colleagues Tina Brune, our Quality Management Commissioner, and René Hoffmann, our Information Management Officer, who ensure that we all know and follow the rules and regulations to protect us from cyber threats.