SMH successfully retain ISO27001 accreditation


We are thrilled to announce that SMH has successfully retained its ISO 27001 accreditation.


Since first becoming ISO 27001:2013 accredited in 2015, SMH has continued to evolve and improve its security management processes in response to emerging business needs and the changing security landscape.


The ISO 27001 accreditation is an integral part of our portfolio of accreditations, demonstrating not only that we keep our clients data safe, but that we consistently deliver excellence in the area of data and IT system security.


The auditor reported: "Overall, the system is fully compliant and can be described as good with some outstanding features.  Another strong performance with some excellent examples of procedures and well documented process”


One of our biggest threats relates to people and their actions, especially concerning email.  To help with this our IT team carry out regular phishing campaigns which raise awareness of the risks and what should and shouldn't be done to keep data safe. We also carry out monthly Information Security training modules with all employees, covering areas such as phishing, clear desk policy, social media, passwords, viruses and classification of documents.


For more information on SMH’s accreditations, see the ‘About’ us page.