Information Security landscape is
becoming increasingly challenging and hazardous all around the world. In past,
business executive use to ignore the cyber risk as it was not considered a
direct threat but that is not the case anymore. Now organization need to adopt
best practices and standards to minimize the risk of growing information
security threats that can impact business in many ways including loss of
customer trust, negative impact on brand and causing financial damage to the
bottom line.
The major question arises is what is
the best way to overcome this challenge? The International Standards
Organization (ISO) has the best answer to this:-
“ISO
was founded with the idea of answering a fundamental question: “what's the best
way of doing this?”
Following a standard that is been
practiced in numerous organizations across the globe and adopted from the best
practices of the professionals increase customers, consumers and regulators
confidence that you are adopting an accepted and tested approach to counter
business risks.
Officially ISO Standard for managing
information security is ISO 27001: Information Security Management System
(ISMS) which can be described as a lifestyle that empowers a business to
improve its overall information security posture. Organizations that are
awarded ISO 27001:2013 certification can claim that they are taking appropriate
control measures to protect confidential and privileged information, following
international best practices to mitigate cyber threats and have cyber incident
response and management processes to respond cyber-attacks and have established
a formal information risk management process and a functioning ISMS or
Information Security Risk Management System.
Adopting ISO 27001 is not just a
checkbox exercise, sometimes requirea cultural change and it is top down
exercise demanding time and effort. That is the reason organizations usually
hire consultancy firms to let professional and experience people to carry out
this job and take organization through ISO 27001 implementation.
Recognizing the factthat optimum and
up-to-date information is without value unless it is relevant and accessible to
the people it is meant to serve. In order To achieve this task an agreement is
signed between National Telecommunication Corporation (NTC) and IT Butler Pvt.
Ltd. On 26th June 2018 for ISO 27001 implementation and
certification, for achieving the certain maturity level of its IT governance,
processes, Infrastructure, products and services in context of Information
Security.
NTC was formed in 1996 by telecom
reorganization act through which Pakistan Telecommunication Corporation
(formerly Pakistan Telephone and Telegraph Department) was split into two
companies; National Telecommunication Corporation (NTC) and Pakistan Telecommunication
Company Limited (PTCL). NTC provides telecom services to all government
departments and at residencies of government employees across Pakistan. NTC has
a definite mandate to provide basic telecommunication services to its
designated customers, which include Federal and Provincial Governments, their
departments, autonomous organizations and defense services throughout the
country. NTC Making committed efforts to provide following state-of-the-art
communication solutions using third generation IP Voice & Data Networking.
IT Butler operates internationally with
consulting and integrating capabilities in United Arab Emirates, Australia, and
Pakistan. ITB works with many of the world’s major companies to help them
maximize the value of their technology investment through consulting,
integrating, implementing and managing Infrastructure Solutions and Business
Solutions; ITB helps many of the world’s largest global and local organizations
to maximize the value of their technological investment and improve interaction
with their customers.
ITB has history of providing different
services including Information Security, Training, e-Learning, Consultancy, ERP
Solutions, CMMSSolutions to various organizations in Pakistan. Recently IT
Butler ongoing projects include ISO 27001 Certification Consultancy to Election
Commission of Pakistan (ECP), Information Security Solution Deployment and
Consultancy to Defense Organizations.
IT Butler’s CEO Dr. Manshad Satti was
recently nominated as convener for Task Force on Internet Voting for Overseas
Pakistanis By ECP on instructions of honorable Supreme
Court of Pakistan. Task Force has completed its job and submitted its findings
in mandated time.