Global law firm White & Case LLP announced today that it recently expanded its certification under the prestigious ISO/IEC 27001 standard, the world's highest accreditation for information protection and security. Awarded to firms whose business processes conform to strict international standards, the ISO/IEC 27001 accreditation is the only auditable international benchmark for information security management. The Firm's ISO program was also assessed to be in alignment to the rigorous NIST 800-53 standard. White & Case initially achieved ISO certification in February 2011.
"Our long-standing adherence to ISO/IEC 27001's global standards demonstrates our commitment to protecting our clients’ sensitive information," said Tony Cordeiro, White & Case Chief Information Officer. "As many of our clients have said, the protection of their information is of paramount importance when conducting business with our Firm."
Developed by the International Organization for Standardization, ISO/IEC 27001 is a globally-recognized Information Security Management System standard that requires adherence to 11 control categories: information security policy, security organization, personnel security, access controls, physical security, asset management, continuity planning, system deployment, application development & maintenance, communication management and compliance in order to protect information assets.
In order to obtain recertification, White & Case underwent a rigorous set of internal and external reviews to ensure its IT systems met the requirements of ISO/IEC 27001, a process audited by SGS, a leading global provider of inspection, testing, certification and verification services.
For more information please speak to your local media contact.