As information becomes an ever more valuable asset for companies, safeguarding it against cybersecurity breaches, data leaks and unauthorised access is critical to businesses of all sizes.
ISO 27001 is a globally recognised standard that serves as a comprehensive framework for establishing and maintaining effective information security practices and we’re proud to have received our independently audited annual certification.
Whilst we’ve always been security minded at XConnect, over the past 5 years the standard has formalised and refined our constantly evolving processes. It emphasises the importance of identifying and assessing Information Security risks and then we’re able to implement the appropriate controls to mitigate or manage them effectively. We have a mindset of continuous improvement here and the Plan-Do-Check-Act (PDCA) cycle of ISO 27001 supports this as threats evolve.
By identifying vulnerabilities and addressing them systematically we’re hopefully significantly reducing the likelihood of security incidents. Then, if an incident does occur, the processes and incident response plans that we have developed help us to minimise the impact.
It’s not an easy task to become compliant and my team is instrumental in keeping the business on track, implementing and maintaining our Information Security Management System. We’ve put security at the very heart of our culture here, right through the organisation, and everyone is committed to ensuring we do our upmost to protect our suppliers, our customers and ourselves.
Each employee in the business undertakes mandatory training regularly and this evolves depending on the latest and most prevalent threats – this ensures everyone is on the lookout for potential risks.
The ISO 27001 certificate is critical for us when we partner with Mobile Network Operators, Carrier and Messaging providers to manage sensitive network and subscriber information. Not only that, as we grow, the standard helps us align our corporate goals with our security framework and as we expand our fraud, risk and advanced routing services to our global telecoms and identity customers, we are increasingly managing sensitive data with additional privacy and security requirements.
BUT! The challenge to be compliant is ever-changing, and over the next couple of years we plan to migrate to the latest version of the standard, ISO 27001: 2022, which will step up the intensity of activities as we work towards our re-certification – it’s a challenge we’re facing positively as it will only mean we can provide a better, more secure service to our customers.
About XConnect
XConnect, a wholly owned subsidiary of Somos Inc, consolidates, maintains and delivers trusted telephone number intelligence to world leading telecommunication service providers.
It processes information from hundreds of different global datasets and ensures that customers solve routing, validation, and fraud challenges in real time.
XConnect’s Number Information Services are used for voice and messaging routing, fraud protection and to identify and validate insights. They also support the deployment and evolution of next-generation communications, such as VoLTE and RCS.
Its service is accessed through its global distributed hybrid cloud platform using simple, secure, scalable real-time protocols and APIs.
