IS&T receives international recognition for ISO 27001 certification
Georgia State University recently made history when it became the second university in the U.S. to receive an ISO 27001 certification for information security from an accredited registrar, the British Standards Institute (BSI).
IS&T and the Office of Disbursements make history by earning the university ISO 27001 Certification
BSI presented the certification to the Georgia State's Chief Information Officer (CIO) J. L. Albert at an awards ceremony held on campus. During the ceremony, IS&T also recognized more than 20 employees who have worked to help the university earn certification. Georgia State's Division of Information Systems and Technology and Office of Disbursement participated the process.
"The certification drives continuous improvement in information security management systems and drives you to look for better ways to operate with your systems," said Todd Begerow, business development manager for BSI. "You're focused internally to stay up with technology and with doing the things that are best for your customers. For Georgia State to have proactively accomplished this and in a manner that was cost-effective is tremendous."
As part of its information security governance initiative, Georgia State recently finished a three-year assessment, review and development of information security policies and business practices.
Each year, the university will undergo an audit to maintain its certification. "It's a very thorough audit that covers about 133 controls. The certification is validation, but what Georgia State is doing proactively in using the framework is more important than anything," said Bergerow.