GCI re-certified for ISO standards and PCI compliance
4 December 2017
We have successfully re-certificated several ISO standards. These include ISO9001 (Quality Management), ISO27001 (Information Security Management), ISO20000 (Service Management) and ISO14001 (Environmental Management).
Phil Smith, Chief Operating Officer at GCI, commented: “I am extremely proud of what the team have achieved in 12 months. The entire Business Effectiveness team received the highest of praise from the auditor for their levels of professionalism and preparation, and for the way in which they have transformed [this function] into a vehicle for improving the effectiveness of our business.”
Of particular note is the achievement of GCI’s ISO20000 certification, which is vital for its Public Sector contracts. GCI have also achieved the highest certification for PCI DSS compliance (Level 1), The PCI DSS standard is a set of requirements designed to ensure that all companies that process, store or transmit credit card information maintain a secure environment for cardholder data.
Phil Smith concluded: “The next 12 months will be focused on continuing the integration and continual improvement of our policies, processes, systems and procedures in line with ISO and other requirements such as GDPR and PCI DSS so that working to best practice and meeting legal and regulatory requirements is effectively embedded in what and how we do things on a daily basis.”