ISO 27001 Information Security Management System Accreditation is an internationally recognised standard for information security management which provides a common framework for managing security across business and across borders. Achieving the ISO 27001 accreditation in 2017 was an important benchmark for The Tracing Group as it confirms that all internal systems reflect this high standard and that clients can trust The Tracing Group’s practices. As part of the ongoing commitment to maintain this accreditation, The Tracing Group is audited regularly internally and externally.
Financial Services Qualification System (FSQS)
FSQS is a community of financial institutions including banks, building societies, insurance companies and investment services, collaborating to agree a single standard for collecting the increasing amount and complexity of third party information needed to demonstrate compliance to regulators, internal policies and governance controls.
The Tracing Group team are proud to have successfully completed the stringent FSQS approval process following an invitation to apply in 2019 and recognise this as an important milestone. Passing the extensive accreditation process enables The Tracing Group to work as a preferred supplier for some of the UK’s leading financial institutions.
The Tracing Group are proud to be penetration tested by CREST and CHECK approved DigitialXRAID. DigitalXRAID are a full service cyber security specialist with every employee being accredited to the highest standard to ensure technical excellence.
The Tracing Group undergo Penetration Testing in order to gain an understanding of the current threat landscape and the open attack vectors that face the organisation. This highlights how malicious threat actors could manipulate these issues. DigitalXRAID simulate a controlled ethical hack in the form of an External Infrastructure and Web Application Penetration Test against the FTP Server Application.
Data and information needs to be safe, secure, and accessible. The security of information is important for privacy, confidentiality and the smooth functioning of systems and supply chains in today’s interconnected world.
The Tracing Group team recognise that, in the course of contractual relationships, it is necessary for clients to seek assurance that working processes and systems are well considered, appropriate and, more importantly, compliant. The Tracing Group team are used to working closely and pro-actively with clients to ensure all the pre-requisite security checks are completed in a prompt and efficient manner to ensure approved supplier status is achieved.
Working closely with suppliers that may hold data to ensure that the requisite Security Due Diligence standards are met builds confidence with all relevant parties that data is held securely and processed in line with ISO 27001 requirements, and legislative and regulatory obligations.
The UK Government’s Cyber Essentials Scheme was developed as part of the UK’s National Cyber Security Programme and is backed by UK industry, including the Federation of Small Businesses, the CBI and a number of insurance organisations.
This scheme allows members to evidence that they are taking both proactive and best practice measures to protect the confidentiality, integrity and availability of data via secure configurations of desktop, server and networking equipment.
The Tracing Group team are currently working towards Cyber Essentials accreditation and further information regarding this can be found here soon.