ISO/IEC 27001:2022 certification

The renewed ISO certification confirms that Nimbus guarantees topmost information security

Information is one the most valuable resources of any organization. Doing our utmost to ensure it is protected, we have therefore had our company certified according to ISO/IEC 27001:2022. State-of-the-art data centres and regular security and penetration tests enable us to guarantee topmost data protection, integrity and availability – whether while managing share registers or organizing and carrying out Annual General Meetings.

ISO/IEC 27001: the most important security standard for information security management systems (ISMS)
When certifying a company according to ISO/IEC 27001, the inspecting body analyses how well security goals such as data protection, integrity and availability are met. The inspected company needs to ensure that data can be viewed, edited and managed by authorized personnel only, that data cannot be altered or manipulated secretly by unauthorized persons and that all systems are well protected against failures and attacks.

Comprehensive information security at Nimbus
Swiss Safety Center AG had already audited Nimbus’ ISMS in 2021 and issued the ISO/IEC 27001:2013 certificate in confirmation. Four years later, Nimbus war re-certified according to the new ISO/IEC 27001:2022 standard. All technical and non-technical processes, including the relevant security measures, were subjected to critical scrutiny, optimized if necessary, and documented. The 93-point catalogue of measures specifies each and every one of the processes and the way it must take place, and also defines how to enforce adherence to the guidelines in each individual case.

We ensure that the measures are implemented through a training programme that all employees must complete. An internal audit is also carried out every year in preparation for the review audits and recertification by the Swiss Safety Centre. This allows us to check that all employees are aware of and comply with all safety measures.

It is challenging to receive an ISO/IEC 27001:2022 certification and to retain it. At Nimbus, the workload we dedicate to this is almost 100 percent. However, our ISMS specialist Jean-Christophe Chaulieu emphasizes it is well worthwhile: “The ISO/IEC 27001:2022 quality certificate is of utmost importance for us. It proves that we have a consistent, proficient security management system in place and that we comply with legal, regulatory and contractual requirements. This boosts our clients’ trust in us.”

Only the best for our customers
We constantly invest in the best of technologies and in staff training. This is how we guarantee that our systems meet modern requirements, that all our applications and data are highly secure and available, and that our employees make full use of their expertise and personal commitment to satisfy each and every one of our clients. We are certain that perfect quality and performance are the best way to ensure a long-term partnership and co-operation.