Following a comprehensive external audit carried out by BSI Group (The British Standards Institution), Deloitte Luxembourg has been recertified as an ISO/IEC 27001:2013 compliant organization.
This ISO certification confirms that Deloitte has maintained a strict Information Security Management System (ISMS) for its business processes, and that information security and client confidentiality are an integral part of the foundation of the firm’s activities. The ISMS is a set of policies, procedures and processes that ensures a high standard of security, in line with legal requirements that are upheld by Deloitte employees and supported by IT systems and structures throughout the organization.
Roland Bastin, Partner and Chief Confidentiality Officer at Deloitte Luxembourg, highlights the importance of the confirmed status: “Given the nature of our business, information security has and always will remain a top priority for Deloitte and all its employees and sub-contractors. This is increasingly sensitive as we navigate new waters in the face of the COVID-19 pandemic. During these unprecedented times, with many operations moving to online platforms and remote working, the risk of cyber-attacks looms greater than ever. This certification demonstrates our commitment to maintain and continue to ensure the highest standard of data protection.”
Deloitte Luxembourg has successfully maintained the ISO 27001 certification since the first audit in 2017.
More information about ISO/IEC 27001 can be found at the International Organization for Standardization website: https://www.iso.org/isoiec-27001-information-security.html.
Press release by Deloitte
Publié le 18 juin 2020