Configuración de Cookies

Utilizamos cookies propias y de terceros para analizar nuestros servicios y mostrarte publicidad relacionada con tus preferencias en base a un perfil elaborado a partir de tus hábitos de navegación (por ejemplo, páginas visitadas). Puedes aceptar todas estas cookies pulsando el botón ACEPTAR o configurarlas o rechazar su uso clicando en el apartado CONFIGURACIÓN DE COOKIES.

Si quieres más información, consulta la Política de Cookies y Lista de Cookies de nuestra página web.

Sus preferencias





Lanaccess Achieves ISO 27001 Certification

ISO 27001 Lanaccess

Antonio Marco
IT & Cybersecurity Manager
MCS | ITIL | SMPC | DevSecOps | Cloud Architect

21 de January, 2025

Comparte

Índice de contenido

We are proud to have obtained this certification, a milestone that reaffirms our commitment to cybersecurity and demonstrates our ongoing efforts to develop secure and resilient video surveillance systems.

Scope of ISO 27001 for Lanaccess

This certification fully applies to our Information Security Management System (ISMS) in relation to the company’s core activity: developing video surveillance equipment and software. It covers everything from the firmware of our devices to the Video Management System (VMS) and advanced video analytics.

We obtained ISO 27001 after successfully passing rigorous external audits that assessed us against a comprehensive set of criteria.

In accordance with the latest version of the certification, 1.2 (2023), the audits evaluated our team’s practices, corporate policies, procedures, IT systems and the devices and applications developed at our R&D&I centre.

The certification applies to our headquarters in Barcelona as well as our strategic offices in Madrid and Mexico City.

Certification details:

  • Standard: ISO/IEC 27001:2022 Information Security Management System
  • Date of Certification: 26/11/2024
    Issued by: Staunchly Management and System Services Ltd.
  • External Auditor: Iscertia
  • Directory: staunchlyservices.com/search_certified_client_php
  • Certification Number: ES58365E

Detalles de la certificación

  • Estándar de certificación: ISO/IEC 27001:2022 Information Security Management System
  • Fecha de obtención: 26/11/2024
  • Certificación expedida por: Staunchly Management And System Services Ltd.
  • Auditor externo: Iscertia
  • Directorio: staunchlyservices.com/
    search_certified_client_php
  • Número de certificación: ES58365E

What is ISO 27001?

ISO 27001 (also known as ISO/IEC 27001:2022) is a globally recognised standard for cybersecurity management. It defines the requirements for establishing, implementing, maintaining and continuously improving an information security management system (ISMS).

Certification ensures that companies adopting the standard are committed to following international security best practices and implementing all available measures, including:

  • Operational security: managing system security during use and operation, including malware protection, backups and vulnerability management.
  • Cryptography: using encryption techniques to ensure the confidentiality, integrity and authenticity of information.
  • Logical access control: managing access rights and policies for systems and applications, including authentication and authorisation.
  • Communication security: protecting data networks and ensuring secure information transfer.
  • Human resource security: implementing controls before, during and after employment to ensure staff understand and adhere to security policies.
  • Security awareness and training: providing employees with training and awareness programmes on information security.
  • Personnel change management: establishing procedures to manage staff changes, ensuring access rights and privileges are updated accordingly.
  • Physical and environmental security: implementing measures to protect buildings, offices and data centres against unauthorised access, damage and natural disasters.
  • Physical access control: using access control systems, surveillance and other security measures to ensure only authorised personnel can enter sensitive areas.

Cybersecurity beyond ISO

ISO 27001 is part of a broader framework of standards and regulations that make up Lanaccess’s compliance portfolio. Key regulations include:

NDAA (National Defense Authorization Act): US legislation that ensures only cybersecure devices are imported into the country.

NIS 2 (Network and Information Systems Directive): European regulation aimed at companies in critical sectors or those providing digital services, with a focus on cybersecurity.

DORA (Digital Operational Resilience Act): European regulation similar to NIS 2, but specifically targeted at financial institutions.

GDPR (General Data Protection Regulation): European Union regulation that governs the protection of personal data.

Conclusions

For Lanaccess, cybersecurity is not the end goal; it is the journey the organisation has been on since its foundation over 25 years ago.

Our ultimate aim is to continue positioning ourselves as a leading and trusted manufacturer in the video surveillance industry.

We comply with ISO 27001, the most rigorous and internationally recognised standard for data protection. How can we help with your security?