BoardPAC receives latest ISO 27001 certification for 4th consecutive year
BoardPAC, the award-winning Sri Lanka-developed, iPad-enabled paperless board communication and meetings solution has received the 1SO/IEC 27001:2013 information security certification for the fourth consecutive year.
Notably, BoardPAC (Pvt) Ltd. is the first software company in Sri Lanka to obtain the latest version of this certification in respect of the international standard for Information Security Management.
The ISO 27001:2013 certification is the highest international benchmark for Information Security Management, and the world’s highest accreditation for information protection and security.
BoardPAC received a UKAS (United Kingdom Accreditation Service) accredited certificate for the Information Security Management System from Bureau Veritas. The certificate covers the organisation’s entire operation.
The renewal of this accreditation can be attributed to BoardPAC’s continuous commitment to providing customers stringent security compliance in managing and securing the confidentiality, integrity and availability of their information. BoardPAC’s information security management system includes policies around access control, incident management, business continuity, physical security, human resources and technical procedures.
Commenting on the renewal of the ISO 27001 Certification, the Chief Operating Officer of BoardPAC, Mr Rajitha Kuruppumulle said: “Not only does BoardPAC encourage environmentally-sustainable business practices; it also provides the highest level of security to clients, in compliance with the latest standards
in Information Security Management. Our solution eliminates all concerns about information security while facilitating the digital sharing of information needed by directors and others for board meetings.”
Buddhika Abeygooneratne, the Manager ISMS of the Company added: “Meeting the stringent standards stipulated for ISO 27001 certification challenges software developers to keep up with and protect their
products and their users against the latest and emerging threats to data security. This requires a high degree of skill that only a few companies have.”
The ISO/IEC 27001:2013 certification enforces the most stringent controls to ensure ample security measures are implemented to protect the BoardPAC information assets. The Information Security Management System (ISMS) provides a framework for establishing information security policies, procedures and associated practices, risk assessment and risk treatment, management of information assets, human resources security, operational security, physical and environmental security, communication and operational security, acquisition and maintenance of information systems, information security incident management, vulnerability management, compliance, security in supplier management and business continuity and disaster recovery. All of these features provide a framework and a systematic approach to implement effective controls that help in maintaining the confidentiality, integrity and availability of customer data.
BoardPAC is an effective and highly secure method for Board Directors and Management Committee members to access board and committee papers and supplementary information directly from their iPads, thereby eliminating the need for printing multiple copies of each document and couriering such documents to the Directors. It also provides an easy way for Directors to view all documents related to a board paper in a clear manner.
Its security highlights include end-to-end information encryption; user level, meeting level and paper level access control; two factor authentication; trusted device concept; fingerprint authentication and on-premise deployment.
The product has been deployed by some of the strongest brands across the world such as the Axiata Group of companies, Deloitte and Maxis among others. BoardPAC clientele span the largest banks and sector leaders in Asia Pacific such as Prudential, Petronas, Maybank, Hong Leong Group, MSIG, BSN, Bumi Armada, RHB Banking Group, Affin Bank and Bursa Malaysia – the stock exchange of Malaysia.
In Sri Lanka, over 150 of the top corporate entities including John Keells, Sri Lankan Airlines, MAS Holdings, Bank of Ceylon, Commercial Bank, Hemas, Carsons, Softlogic, Sri Lanka Telecom, Sampath Bank, National Savings Bank, Nations Trust Bank and Merchant Bank of Sri Lanka as well as the SEC and Colombo Stock Exchange use BoardPAC.
BoardPAC already has the largest market share in Board Automation in Asia Pacific across countries such as Malaysia, Sri Lanka, Australia, Singapore, Hong Kong, India, Indonesia, and is emerging as a leader across the globe while its operations have expanded overseas in over 20 countries.