Information Security landscape is becoming increasingly challenging and hazardous all around the world. In past, business executive use to ignore the cyber risk as it was not considered a direct threat but that is not the case anymore. Now organization need to adopt best practices and standards to minimize the risk of growing information security threats that can impact business in many ways including loss of customer trust, negative impact on brand and causing financial damage to the bottom line.
The major question arises is what is the best way to overcome this challenge? The International Standards Organization (ISO) has the best answer to this:-
“ISO was founded with the idea of answering a fundamental question: “what’s the best way of doing this?” Following a standard that is been practiced in numerous organizations across the globe and adopted from the best practices of the professionals increase customers, consumers and regulators confidence that you are adopting an accepted and tested approach to counter business risks.
Officially ISO Standard for managing information security is ISO 27001: Information Security Management System (ISMS) which can be described as a lifestyle that empowers a business to improve its overall information security posture. Organizations that are awarded ISO 27001:2013 certification can claim that they are taking appropriate control measures to protect confidential and privileged information, following international best practices to mitigate cyber threats and have cyber incident response and management processes to respond cyber-attacks and have established a formal information risk management process and a functioning ISMS or Information Security Risk Management System.
Adopting ISO 27001 is not just a checkbox exercise, sometimes require a cultural change and it is top down exercise demanding time and effort. That is the reason organizations usually hire consultancy firms to let professional and experience people to carry out this job and take organization through ISO 27001 implementation.
Recognizing the fact that optimum and up-to-date information is without value unless it is relevant and accessible to the people it is meant to serve. In order To achieve this task an agreement is signed between National Telecommunication Corporation (NTC) and IT Butler Pvt. Ltd. On 26th June 2018 for ISO 27001 implementation and certification, for achieving the certain maturity level of its IT governance, processes, Infrastructure, products and services in context of Information Security.
NTC was formed in 1996 by telecom reorganization act through which Pakistan Telecommunication Corporation (formerly Pakistan Telephone and Telegraph Department) was split into two companies; National Telecommunication Corporation (NTC) and Pakistan Telecommunication Company Limited (PTCL). NTC provides telecom services to all government departments and at residencies of government employees across Pakistan. NTC has a definite mandate to provide basic telecommunication services to its designated customers, which include Federal and Provincial Governments, their departments, autonomous organizations and defense services throughout the country. NTC Making committed efforts to provide following state-of-the-art communication solutions using third generation IP Voice & Data Networking.
IT Butler operates internationally with consulting and integrating capabilities in United Arab Emirates, Australia, and Pakistan. ITB works with many of the world’s major companies to help them maximize the value of their technology investment through consulting, integrating, implementing and managing Infrastructure Solutions and Business Solutions; ITB helps many of the world’s largest global and local organizations to maximize the value of their technological investment and improve interaction with their customers.
ITB has history of providing different services including Information Security, Training, e-Learning, Consultancy, ERP Solutions, CMMS Solutions to various organizations in Pakistan. Recently IT Butler ongoing projects include ISO 27001 Certification Consultancy to Election Commission of Pakistan (ECP), Information Security Solution Deployment and Consultancy to Defense Organizations.
IT Butler’s CEO Dr. Manshad Satti was recently nominated as convener for Task Force on Internet Voting for Overseas Pakistanis. By ECP on instructions of honorable Supreme Court of Pakistan. Task Force has completed its job and submitted its findings in mandated time.