Field strengthens customer data protection with ISO 27001 certification
Field is amongst the first Norwegian geodata companies to receive the internationally recognized ISO 27001:2017 certification for its Information Security Management System (ISMS) — demonstrating best practice in information security and data privacy across internal and external systems.
The certification demonstrates that Field has implemented a comprehensive ISMS that meets the highest standards of security and risk management internationally. Often considered the most comprehensive and difficult certification to obtain, Field achieved excellent scores and feedback throughout the audit by certification company Kiwa.
Field engaged security consulting services experts Orange Cyberdefense to guide the complex and challenging certification process and ensure our new systems meet leading international standards said (former) Field Chief Information Security Officer, Arkadiusz Szadkowski, who led the project.
"Our commitment to taking the security of our customers' data seriously has been reinforced by this certification, which affects all areas of our everyday work.
"Cybersecurity is often misjudged as solely a technical effort, while the human and risk management factors are frequently underestimated. However, we have worked diligently to strike a balance between all aspects, including implementing advanced tools, policies, procedures, processes, and securing compliance. Our achievement of ISO 27001 certification validates our efforts in building a robust and sustainable ISMS.
"We are committed to maintaining this high standard of information security and ensuring that our customer's data and information is protected at all times," said Mr. Szadkowski.
The certification shows customers and partners that our systems follow best practices and that we continuously work on compliance and improvement, explained Field IT Operations & Security Manager Marius Auli.
“ISMS and ISO 27001 represent a crucial framework for ensuring the security and integrity of information security within an organization. Implementing these frameworks was a challenging yet fulfilling endeavor, as we prioritized the security and confidentiality of our customers’ data throughout the process. Our customers can feel confident that we handle information within our company in a structured and secure way,” he said.
Prioritizing implementation post-merger, Field achieved accreditation in only 11 months starting the process in mid-April 2022 and successfully passing the certification audit in mid-March 2023.
Field and Skyports Drone Services to revolutionize utilities, road and rail sectors
Field announces organizational changes and renewed direction
New mobile mapping solution makes managing road networks easier and more efficient