Emapta obtains ISO certification on information security
Emapta, a leading talent solutions provider, received its information management security certification from the International Organization for Standardization (ISO) on September 13, 2023.
Justin Arrojado, Emapta’s information security manager referred to the ISO 27001 certificate as “one of the most important certifications to maintain.”
The journey towards the certification, Arrojado shared, was rigorous as external accreditors had to conduct deep, independent audits into the company’s information management security system.
“The accreditors had to make sure that Emapta has been following ISO’s mandatory clauses on people awareness, communications, and proper controls against cyber security threats,” he added.
Aside from the ISO 27001, Arrojado said that Emapta is also in the process of obtaining the ISO 27701 certification, which deals with data privacy.
“This shows that we have the necessary technical, administrative, and physical safeguards to ensure that personal data are properly handled in accordance with applicable privacy laws,” he explained.
Robust, well-rounded protection
Apart from ISO certifications, the company also passed SOC-2 attestation, another independent audit that follows a standard developed by the American Institute of Certified Public Accountants.
The SOC-2 audit shows that Emapta’s data management practices meet the strict standards of security in the United States’ financial space.
“Our customers can have peace of mind knowing that our processes, systems, and measures align with the golden standards of the industry,” Arrojado said.
“We even have our internal, independent audit department to ensure that these controls are operating effectively and continue to be compliant to our certifications,” he added.
The road ahead
For Emapta, all certifications and attestations are part of its long-term plan to help client businesses grow in the safest and most secure global environment.
“We are now on our way to getting an attestation from the Payment Card Industry Data Security Standard (PCI DSS),” said Arrojado.