III’s Information Technology Service Division won the "Information Governance Award" recognized by British Standards Institution (BSI)
Date: 2015/11/25
One of the Institute for Information Industry (III) department, Information Technology Service Division (ITSD), received the "Information Governance Award" from British Standards Institution (BSI) in recognition of focusing on the effectiveness of full range of information security governance in November 25th 2015. British Standards Institution (BSI) system is the world's first non-profit national standards organization which British Government highly recognized and supported.
III’s Chief Informa¬¬tion Officer, Dr. Irving Tai, stressed that, in 2012, III’s Cyber Trust Technology Institute (CTTI) had been integrated 3-in-one system, BS 10012 / ISO 27001 / ISO20000, successfully within five months and that achievement had led the institute becoming the first record-breaking institution nationwide at the time. We are very proud the meaningful breakthrough milestone that ITSD, the core MIS management of III, won the BSI "Information Governance Award" a couple years later
Generally speaking, the IT department plays a pivotal role in most organizations. It is responsible for providing variety of information systems and services, so as to integrate operation and communication within other departments internally. In order to strengthen the internal operations and external communications, the director of ITSD, Ming Cheng Sheng, mentioned that ITSD has been recognized for ISO 27001 Information Security Management System for 11 years. In order to meet the IT service management system’s standard,
III had started implementing ISO 20000 IT Service Management (ITSM) and ISO 27001 Information Security Management System since 2009. These 2 systems not only jointly enhanced the operation-mechanism, but also accelerating the integrated speed of completing information services and security management system framework. It well improved the management efficiency and effectiveness.
Moreover, III especially focused on strengthening the internal information security management committee functions since 2013, considering the worldwide dramatically development changes. The implementation of information services at the plenary session by promoting information security group work, for network security, operating system security, endpoint protection, and III staff education training…etc. to ensure the quality of service could follow every moving steps. III passed the certification of ISO 27001: 2013 transformation versions in 2015; on the other hand, it also showed that ITSD had put lots efforts in information security during these past few years.
Facing the complicated ICT environment, information security issues no doubt has becoming more and more important. ITSD will consistently focus on improving the performance of those existing program, increasing the daily operations of information management, improving the information security management consistently and strengthen the quick reaction system ability on the information security matters. Looking forward to the future, III is aiming to establish a more secure and stable information services environment for the industry’s best benefit.
【Information Governance Award】
British Standards Institution (BSI), is a multinational business services provider whose principal activity is the production of standards and the supply of standards-related services. "Information Governance Award" is primarily in recognition of organization that continuous investment and achievement in the field of information management.
ITSD honored Information Governance Award by BSI, III’s Chief Information Officer, Dr. Irving Tai (right), accept the award from Deputy Head of UK Representative Office, Taipei and Director UK Trade and Investment, Damion Potter (left).
【ISO 20000 and ISO 27001】
What is ISO 20000?
ISO/IEC 20000 is the first international standard for IT service management. It was developed in 2005, by ISO/IEC JTC1/SC7 and revised in 2011.[1] It is based on and intended to supersede the earlier BS 15000 that was developed by BSI Group. Since officially announced in December 2005, as the end of December 2012, there were already more than seven hundred organizations and businesses by more than such an international standard validation. To obtain this international standard certification, organization or enterprise, on behalf of the clients they serve, to provide to meet customer expectations, quantifiable, consistency, both efficiency and effectiveness, and continuous improvement of information technology service levels
What is ISO 27001?
ISO 27001:2013 is an information security standard that was published on the 25th September 2013. It supersedes ISO/IEC 27001:2005, and is published by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC) under the joint ISO and IEC subcommittee, ISO/IEC JTC 1/SC 27.[2] It is a specification for an information security management system (ISMS). Organizations which meet the standard may gain an official certification issued by an independent and accredited certification body on successful completion of a formal audit process.
【Media Contact】
Information Technology Service Division: Steve Shih-Chin Chao
Email: steve@iii.org.tw Tel: (+886)2 6631-8187
Planning & Evaluation Division (III): Meredith Chang, Joy Yen, Freesia Shen
Email: meredith@iii.org.tw, joyyen@iii.org.tw, yingshen@iii.org.tw
Tel: (+886)2 6631-8638、(+886)2 6631-8640、(+886)2 6631-8643