Positive Thinking Company has been certified ISO 27001! This certification is based on the continued efforts of our French teams in terms of security. This internationally recognized standard guarantees the confidentiality, integrity and availability of the information used by a company.
“Thanks to all our teams and the coordination of the IT department, we are happy to benefit from the ISO 27001 certification obtained in January 2022. This approach was driven by four objectives:
Align our information security practices at a Group level within a regulatory framework
Strengthen our defence habits facing an ever-increasing threat
Develop the image of our operational activity related to the cybersecurity business lines
Benefit from commercial access with customers for who this certification is a prerequisite.
In order for us to remain efficient, our work is part of a logic of continuous improvement for which each actor of the company will be involved.”
Emmanuel VARLET, Positive Thinking Company Leader
What are the benefits of this certification?
Defined by the International Organization for Standardization (in French : Organisation internationale de Standardisation – ISO), this standard facilitates the security management of sensitive assets such as financial data, intellectual property documents, personnel data, or information entrusted by third parties.
Today, it is crucial for businesses to gain resilience against cyber threats such as phishing and malware. These fraudulent techniques designed to lure the Internet user to communicate his personal and/or banking data are developing. More and more virulent and widespread, they are real threats in the professional sphere, such as private sphere.
Working with an organisation that has implemented a global information security policy is a guarantee of safety for external actors such as customers and partners. Aware of these issues, we established a set of security policies to manage information-related risks, such as an Information Security Management Systems (ISMS).
“Being ISO 27001 certified allows us to open doors for customers who are sensitive to the resilience of their suppliers. Certification ensures that we implement and control the confidentiality of our data, that we’ve put in place to ensure the accessibility of our applications and continuity in the event of a disaster. This exercise allowed us to structure our company, to industrialize our processes and to be able to grow more serenely.
In this certification, IT has been at the forefront, with a profound change its way of working. There was also the introduction of new security tools. The support functions and particularly the HR and marketing communication teams were also decisive in order to carry out the required communication and training actions.”
Philippe LAROCHE, Information Systems Leader
What was the role of each collaborator?
This certification includes a set of processes and tools, while taking account to employees. In order to raise their awareness, we have put in place various actions to prevent all kinds of cyber threats:
- Webinars
- Practice sheets and personalized advice
- Posters
- Phishing campaign
- Quizz
With this certification and the daily involvement of our teams, we are able to prevent cyber attacks and to protect data within our company.
In addition to these internal awareness actions, Positive Thinking Company has developed a new solution for its customers to raise their awareness of cybersecurity issues, which renews cyber risks trainings. A playful moment allowing people to slip into the shoes of a spy during an immersive experience thanks to virtual reality, an escape game, not to forgetting a feedback session to consolidate the acquired knowledge during these practical phases.
Discover here, why more and more companies take the ISO 27001 certification.