ASTUTE FSE, in June 2018 became the 1st financial services industry company in South Africa to be audited and certified as ISO 27001 compliant for Information Security Management Systems.
The focus of ISO 27001 is to protect the confidentiality, integrity and availability of the information in a company, especially when information and data relates to that of personal information.
Managing information security is not only about IT security (i.e. firewalls, anti-virus, etc.) – it is also about managing processes, legal protection, managing human resources, physical protection, staff awareness and education and dedicated commitment from top management to the system.
ASTUTE FSE is responsible for connecting the financial services industry through a central point of integration and the exchange of data related to intermediary and advice services for insurance and investment products and also service the industry with Risk and Fraud mitigation services and regulatory compliance services.
“Being first is an achievement in itself, but being certified ISO 27001 is just the start of the process for us. This process was all about making sure we have the correct management framework in place to ensure we are in a better position and the highest level of oversight is in place to manage information security to the best of our ability. We know that we will be a target for cyber-attacks, as will every other financial services company, but we would rather be ready than being caught off-guard. I’m proud of our team and the full commitment by all our staff in achieving this significant first step to safeguard the industry. With breaches in security becoming headline news, having an Information Security Management System in place will be a significant objective for all companies, and at board level should be at the significant impact level of corporate risk registers.” – Jacques Rossouw (CEO)