VADS Berhad (VADS), a managed ICT company announced that it has became the first Malaysian cloud service provider to receive the ISO 27001 certification from SIRIM QAS International for its Public Cloud Services platform through VADS’ existing cloud facilities.
[Khalidah Mustafa, Managing Director, SIRIM QAS International (left) presenting the ISO 27001 certificate to Ahmad Azhar Yahya, Chief Executive Officer, VADS]
The ISO 27001 certificate is an Information Security Management System (ISMS) standard which formally specifies a management system that is intended to bring security under explicit control. The standard was published in October 2005 by the International Organisation for Standardisation (ISO) and is part of the growing ISO 27000 family.
ISO 27001 certifications lasts for three years and during the period, the company will be regularly reassessed and visited by an external auditor who will make sure that the standard is being implemented properly, and recommend improvements where appropriate to ensure that it continuously improves its information security measures over the course of the three year accreditation.
Ahmad Azhar Yahya, Chief Executive Officer, VADS, received the certificate on behalf of VADS from Khalidah Mustafa, Managing Director, SIRIM QAS International Sdn Bhd at a ceremony at Plaza VADS.
Ahmad Azhar shared, “We are delighted to have achieved the ISO 27001 certification for our Public Cloud Services as it is a testament that our product fulfils the international standard of information security systems. VADS acknowledges the importance of data security and how important it is to our customers. Our Data Centres are already ISO 27001 certified and coupled with the ISO 27001 certification for our Public Cloud Services, we are proud to say that customers can be assured of the security of their data as we offer them some of the best information security measures.”
“We chose to adopt the ISO 27001 for VADS Cloud Services as we found it suitable to protect critical and sensitive information and it provides a holistic, risk-based approach to secure information and compliance. The ISO 27001 certification will also allow for an independent review of our information security practices while allowing us to comply with legislation on personal information, intellectual property and other such as Personal Data Protection Act (PDPA) 2010 & the Multimedia Commissions Act 1998,” added he added.