A Milestone in Information Security

Achieving ISO/IEC 27001:2022 Recertification

Achieving certification under ISO/IEC 27001:2022 is a significant accomplishment for any organisation, and successfully passing a re-certification audit is a testament to the ongoing commitment we have at Zinc for maintaining a robust Information Security Management System (ISMS). 

We are proud of this achievement and remain dedicated to continuous improvement, ensuring that our ISMS evolves to meet the ever-changing security landscape. This certification not only validates our efforts but also reassures our clients and partners that their information is managed with the highest care and security.

What does this mean for you? 

It means you can trust that your data is in the hands of a company that prioritises security at every level, ensuring that your information remains safe, secure, and handled with the utmost integrity.

Our successful ISO 27001:2022 re-certification reflects our unwavering commitment to information security excellence. This achievement demonstrates our proactive approach to evolving security challenges and our dedication to safeguarding our clients’ data to the highest standards.
Stephen Shackell, Director of Intelligence and Risk

Re-Certification Audit Objectives

The re-certification audit aimed to confirm several key aspects of our ISMS:

  1. Conformance with ISO 27001:2022:
    The audit verified that our management system meets all the requirements of the updated ISO 27001:2022 standard.
  2. Transition from ISO 27001:2013 to ISO 27001:2022:
    Introduction of new controls for emerging threats, and emphasise clarity, flexibility, and leadership commitment in information security.
  3. Scope statement validation:
    The audit confirmed that the scope of our ISMS, as stated on the Certificate of Registration, accurately represents the organisation’s certified activities.
  4. Effective implementation:
    The audit assessed whether the ISO 27001:2022 standard has been effectively implemented across Zinc Systems.
  5. Achievement of policies and objectives:
    The audit verified that our ISMS is capable of achieving our policies and objectives.
  6. Continuous improvement:
    The audit reviewed the links between internal audits, management reviews, and our continuous improvement processes, ensuring that our ISMS remains dynamic and responsive to emerging risks.

We are really pleased that the audit team has recommended our re-certification to ISO 27001:2022, recognising the strength and maturity of our management system. This independent verification by the British Assessment Bureau reinforces our dedication to maintaining the highest standards of information security, giving our customers confidence in our ability to protect their data with the utmost diligence.
Paul Coverdale, Chief Operating Officer

Audit Findings & Conclusions

The audit was conducted by the British Assessment Bureau (BAB), who followed a process-based approach, focusing on significant aspects, risks, and objectives as required by ISO 27001:2022. The audit methods included interviews, observation of activities, and review of documentation and records, all structured in accordance with the audit plan.

Key Outcomes – Non-conformities Identified:

  • Major: 0
  • Minor: 0

The absence of any non-conformities reflects the maturity and robustness of our ISMS.

Protecting data is our lifeline in a world where “data is the new oil”!
Thank you to the Zinc team for making this protection a core part of our culture.
Joe Zielinski, Founder & Chief Executive Officer

Divider
  • Discover that the price of our software is
    surprisingly affordable.

    Request a demo today.

  • CONTACT US
Divider

Divider