Internet security firm Symantec?s Managed Security Services? security operations centers have gained certification under the British Standard (BS) 7799.
Internet security firm Symantec?s Managed Security Services? security operations centers have been awarded certification under the British Standard (BS) 7799, a specification that defines the requirements for establishing, implementing, and documenting an effective information security management system. BS7799 certification at the security operations centers assures Symantec customers and partners that their information and data are protected through controlled procedures, policies, and best practices.
About the firm
Symantec?s BS7799-certified security operations centers, located in San Antonio, Texas, and Southern England, provide Symantec clients with round-the-clock outsourced security management, monitoring, and response services through Symantec Managed Security Services analysts. James Keegan, head of certification services, KPMG, says: ?As one of the few organisations authorised to provide BS7799 certification, KPMG recognizes both the value and the difficulties of earning certification in today?s e-business environment, where security threats grow in number and complexity every day. KPMG is very pleased to have been able to award Symantec BS7799 certifications, which demonstrates that they have a sophisticated security infrastructure in place.? Certification to BS7799, which typically takes between six and nine months, was a complex process. Symantec completed BS7799 certification through an intensive security audit conducted by KPMG Certification Services, one of seven organisations designated by the United Kingdom Accreditation Services (UKAS) as qualified to audit for compliance to the exhaustive standard. After certification, regularly scheduled reviews and audits are required to maintain compliance.
Craig Robinson, vice president of Symantec?s managed security services, said: ?We are very pleased to be awarded this rare certification. This certification provides powerful evidence of Symantec?s operational maturity and unrelenting commitment to safeguarding the confidentiality, integrity and availability of customer?s critical information.
About the standard
First published in 1995, BS7799 became accepted in other countries as a code of practice for information security and developed into an international standard, ISO17799, about six years later. However, while ISO17799 describes the model for information security management systems in the international arena, BS7799 certification remains the only proof that an organisation actually complies with the standard. Visit www.symantec.com
