Following an annual re-assessment audit, Masen has maintained its ISO/IEC 27001:2013 certification (first obtained in April 2016), thus validating its efforts to bolster the security of its information assets.
14 February 2018
The ISO/IEC 27001:2013 certification is the primary information security benchmark for organisations. The awarding of the certificate confirms that Masen has effectively implemented technical, organisational, administrative and legal measures to guarantee the confidentiality and availability of information, as well as the integrity of various operations. These measures were identified following a risk analysis based on the company's information assets and were consolidated in an information security management system (ISMS).
Implementing the ISMS according to the ISO/IEC 27001:2013 standard has helped define roles and responsibilities in terms of information security, both for Masen's employees and its partners, with the ultimate aim of strengthening the security of its information assets.
The certification has also enabled Masen to establish an internal security culture thanks to regular employee training and awareness campaigns designed to teach everyday good practices in information security.
The certification and surveillance audits, completed by Bureau Veritas Maroc, also highlighted Masen's continuous improvement in information security, which allowed the company to adapt its systems to a dense and evolving agenda of developing renewable energy projects.