CreditWorks Group embarked on its ISO journey in April 2021 and successfully obtained the ISO 27001 Certification in June 2022. During the certification process, the company’s focus on data security, given its core business emphasis on data, played a crucial role in achieving this milestone.
Mr. Tan acknowledges, “We probably took a little longer than planned, due in part to Covid impacts, but we were not in a hurry either, given the importance of security to our business. Data security is paramount to CreditWorks, given our business is all about data.”
“You must give everything due process, formalise the informal, and document all of your change controls. So much needs to happen just to get to the operational phase, before even starting to get ready for assessment. The assessment audit itself is particularly rigorous, over a 3-day period, it’s quite a process, so it’s fantastic we have reached this major milestone for the industry,” says Mr. Tan.