Information security management certified according to the ISO 27001 standard
March 14, 2008
The Information System Division is responsible for the operation of the principle information systems of Landsvirkjun and associated companies.
The certification confirms that Landsvirkjun has developed and operates active information management security systems. This means, among other things, that a risk assessment has been prepared for the information systems and that systematic methods are employed to minimise risk.
Landsvirkjun has established policies for its information security issues as well as rules of procedure for the operation of its information systems. In managing information security, goals are set and results are measured on the basis of the management system. It should be noted that Landsvirkjun is certified according to the ISO 9001 quality standard and was awarded the Icelandic Quality Award in 2007. Moreover, the company’s electricity generation is certified according to the ISO 14001 environmental management standard.
Information and information systems are becoming ever more important in the operation of Landsvirkjun. Energy companies, moreover, have the unique position that their product, electricity, is the basis for modern society, and includes the storage of information and data processing. As a result, it is vital that the customers of Landsvirkjun are able trust that the company employs quality and accredited work practices. Landsvirkjun is the 10th entity in Iceland to receive certification according to the ISO 27001 standard; others include companies generally operating in the field of information technology and finance.
Bergur Jónsson, Head of the Information Division of Landsvirkjun, accepts the
certification document from Árni H. Kristinsson, Managing Director of BSI Iceland.