Dubai Customs has earned renewal of its ISO 27001:2005 Certificate for Information Security Management for the fourth successive year, as a result of an audit by global quality certification provider TÜV Rheinland.
All of DC centres received the ISO 27001- ISM certificate after being thoroughly reviewed and inspected by the agency’s experts.
Younis Othman, IT Director at Dubai Customs, said that Dubai Customs’ implementation of this international certification scheme reinforces the drives of Dubai Government towards establishing a unified information security system, which includes criteria and requirements that must be applied at all government departments and authorities in the Emirate. The system shall contribute to protecting Dubai’s economy and security, maintaining its high reputation as well as enhancing customers’ trust.
Developed by the International Organization for Standardization (ISO), this standard is intended to set up an effective information security management system for companies and corporations by means of implementing a set of standards and conditions that ensure information safety, confidentiality, privacy, and accessibility by authorized personnel, thus ensuring proper work flow.
The international standard covers 11 key domains: information security policy, organizational structure of information security, asset management, human resources security, physical and environmental security, information security system communications and operations management, information system acquisition development and maintenance, information access control, information security risk management, business continuity management, and regulatory compliance. Under these domains, 133 controls are defined as mandatory to determine the organization’s conformity with the international standard.
“Dubai Customs is fully committed to improving and reviewing applicable procedures by the Department’s concerned personnel in addition to developing new procedures. Accordingly, a staff from each department and customs centre is assigned to act as a coordinator between co-workers at the department and the information security section. Furthermore, Dubai Customs constantly educates its members about the significance of information protection and provides them with adequate information security procedures, and conducts an internal audit to ensure that all employees are complying with the standard,” remarked Othman.
Following the internal audit, an external audit was conducted by the international third-party certification agency, where Dubai Customs and its affiliated custom centres’ regulations and procedures were checked for conformity with ISO 27001 standard. Subsequent to the agency’s examination, DC was awarded the renewal of its international certification for the fourth year in a row.
The implementation of the ISO certified Information Security Management System includes promoting the information security culture amongst employees, protecting the value of information regardless of its size, content, or means; as well as ensuring a safe and secure work environment.
Othman noted that the renewal of the ISO 27001:2005 Information Security Management System certificate reflects the tremendous efforts of Dubai Customs’ staff in this field and their compliance with the information security standards in order to safeguard a secure workplace. He said: “Compliance with the standards and terms set forth in this certificate is a true interpretation of the efficiency and effectiveness of applied procedures and service delivery at Dubai Customs.”
The renewed certificate will promote the Department’s name as a world-class organization and boost clients’ trust in the security of its operational processes, which aim to deliver high-end services through using international best practices that ensure the confidentiality and security of customer information and help maintain their competitive advantages.