News • 18.12.2023
Maximum security for our customers
Successfully re-certified in international security standard ISO 27001
DAKOSY has been certified according to the security standard ISO 27001 since 2014. The most recent re-certification audit was conducted in November, when two auditors from TÜV Rheinland examined DAKOSY's central and security-relevant areas for a week, successfully confirming full compliance with the standard.
On October 27, 2023, DAKOSY was certified in the international security standard ISO 27001 for the fourth time.
In essence, ISO 27001 is an international standard that defines the requirements for an ISMS (Information Security Management System). “With the certification of our ISMS, we demonstrate that we have a resilient information technology system that our customers can rely on. Issues such as cyber-attacks, data loss, misuse of confidential information, and even the interruption of business operations are becoming increasingly important, as can be observed almost daily in the media,” explains Torsten Fokuhl, Chief Security Officer (CSO) at DAKOSY.
As a company, DAKOSY is of crucial importance for logistical processes and is classified as part of the so-called critical infrastructure (KRITIS) in Germany. Therefore, since January 1, 2022, DAKOSY has been required to prove that it meets all requirements to adhere to information security guidelines according to state of the art technology.
The newly-attained re-certification is based on the current 2022 standard, which replaced the previous 2013 version at the end of 2022 after almost 10 years in use. Thus, DAKOSY is among the first companies to receive the new certificate. Among the most significant changes is the reorganization of measures in the practical section of the ISO standard, some partially merged, and other parts expanded. New requirements include emergency procedures, security in and around the building, and data protection themes. Additionally, DAKOSY has expanded the scope of the certificate to include the 'Port Information System.' This was particularly important to all parties involved, especially Fokuhl: 'Our aim is not just to establish an ISMS once and manage it for the future, but to achieve completeness and continued improvement. Therefore, we work every day to adapt, prepare, and protect our systems, data centers, and behaviors from current threats and challenges. This includes consistently expanding the system's scope, as we did this year with the Port Information System. All these measures are focused on ensuring maximum security for ourselves and our customers in all areas."
“With the certification of our ISMS, we demonstrate that we have a resilient information technology system that our customers can rely on“.
