barox Kommunikation AG, the manufacturer of IT switches, media converters and IP extenders specifically designed for the demands of video networks, is proud to announce that alongside its ISO 9001 certification, it has successfully implemented an ISO 27001 Information Security Management System (ISMS) for data and information security.
Designed to help organisations manage their information security processes in line with international best practice, achieving the ISO 27001 Standard was a key objective for barox, where the implementation and management of the secure communication of sensitive information has always been a top priority for the company.
The ISO 27001 Standard defines the requirements for the setup and implementation of a documented ISMS
Now that the manufacturer of IT switches for video networks has been certified by an independent testing body, the ISO 27001 certification will be utilised to support the company’s drive to guarantee that it continuously improves and rigorously checks its information security safety standards.
Customer and product data protection
The ISO 27001 Standard defines the requirements for the setup, implementation and continuous improvement of a documented ISMS, and the needs of all parties involved are equally important. In addition, applicable legal and regulatory requirements are taken into account and security mechanisms employed to protect all internal company information.
This also includes employee, customer and supplier data, as well as information on product safety: "Our products are used as active components in security and safety-critical systems," explains Angelo Banfi, co-founder and MD of barox. "Therefore it is particularly important for us to protect this security-relevant, customer and project-related data."
End-to-end information security
Cyber security is high on the barox agenda, especially within the company’s video switch training seminars
barox take a holistic view to the safety of their products, where the product characteristics and the communication of product, project-specific parameters and processes, are all required to be handled safely and responsibly.
This includes the entire process from production, through to delivery of the products; including physical transport and product storage. "We take the issue of end-to-end information security very seriously,” Angelo confirms.
Implementation of cyber security
Regular training will maintain the high standards required by barox employees in relation to the requirements of information security. Likewise, cyber security is high on the barox agenda, especially within the company’s video switch training seminars.
"We place a great deal of emphasis on supporting our customers to help improve their practical implementation of cyber security,” Angelo continues. “For example, we still see management access passwords for switches left in their factory default setting, so making sure that the security basics are understood is a good platform to advance high cyber security standards.”