White & Case obtains recertification in ISO 27001 information security standards | White & Case LLP International Law Firm, Global Law Practice
White & Case obtains recertification in ISO 27001 information security standards

White & Case obtains recertification in ISO 27001 information security standards

Global law firm White & Case LLP announced today that it has been awarded recertification under the prestigious ISO/IEC 27001 standard, the world's highest accreditation for information protection and security. Awarded to firms whose business processes conform to strict international standards, the ISO/IEC 27001 accreditation is the only auditable international benchmark for information security management.

The Firm's ISO program was also assessed and approved to be in alignment with the rigorous NIST 800-53 standard and the cybersecurity practices recommended by the Financial Industry Regulatory Authority (FINRA).

"Our clients expect us to treat their information with the utmost care and confidentiality. Our recertification bears out our commitment to these standards and putting our clients' needs first," said Tony Cordeiro, White & Case Chief Information Officer. "We also have voluntarily chosen to assess our cybersecurity posture against additional benchmarks including those set out by NIST and FINRA. This will help ensure our cyber defense capabilities remain current and can properly defend our clients' sensitive information against cyberattacks from multiple perspectives."

Developed by the International Organization for Standardization, ISO/IEC 27001 is a globally recognized Information Security Management System standard that requires adherence to 11 control categories: information security policy; security organization; personnel security; access controls; physical security; asset management; continuity planning; system deployment; application development & maintenance; communication management and compliance in order to protect information assets.

In order to obtain recertification, White & Case underwent an exhaustive set of internal and external reviews to ensure its IT systems meet the requirements of ISO/IEC 27001, a process audited by SGS, a leading global provider of inspection, testing, certification and verification services. White & Case initially achieved ISO certification in February 2011.

Press contact
For more information, please speak to your local media contact.