Information Security Services, a Saudi-based specialized IT security company, helped Tasnee develop information security policies and procedures, IT service management function and enhance the maturity of its IT and Information Security policies and processes in order to achieve these ISO certifications.
Tasnee manages, operates and owns petrochemical, chemical, plastic, engineering and metal projects and provides industrial services.
The company also markets its products through five major industry sectors such as petrochemical, chemical, metal, diversified and services.
“ISO 27001 is well known internationally adopted standard in the world for information security,” said Abdulgader Al-Harthi, IT Manager at Tasnee.
“Information security is a major concern in today’s world and hence, Tasnee understands and recognizes the need for information security. ISO 20000-1:2011 is service management system standard that offers lot of benefits such as allowance of operational, tactical and strategic planning; provision of core customer-focused IT services and effective use of IT; improvization of efficiency through better alignment with business objectives; and so much more.”
ISO/IEC 27001:2005 covers all types of organizations and specifies the requirements for establishing, implementing, operating, monitoring, reviewing, maintaining and improving a documented Information Security Management System within the context of the organization’s overall business risks.
It specifies requirements for the implementation of security controls customized to the needs of individual organizations or parts thereof.
ISO/IEC 20000-1:2011 meanwhile, is a service management system (SMS) standard.
It specifies requirements for the service provider to plan, establish, implement, operate, monitor, review, maintain and improve an SMS.
The requirements include the design, transition, delivery and improvement of services to fulfill agreed service requirements.
“This was a strategic project for Information Security Services, as we integrated two international standards and helped Tasnee achieve certifications for ISO 27001 and ISO 20000 standards simultaneously,” said Salman Ashraf, manager.
