CITEC assures quality and security for clients

30 June 2005

CITEC has maintained both its Quality Management (ISO 9001:2000) and Information Security Management (AS/NZS 7799.2:2003) certifications, after SAI Global auditors recently conducted surveillance audits of the organisation’s systems and processes.

CITEC’s Manager, Service Quality and Strategies, Peter Marshall, said surveillance audits were conducted on our Quality Management and Information Security Management Systems in Sydney and Brisbane, resulting in the successful recommendation for continued certification.

“The maintenance of our quality and security certifications is a key priority for CITEC to continue to provide our clients assurance that their ICT is being managed according to recognised international quality and security standards,” Peter said.

“It is also a key factor in maintaining our competitiveness and our ability to develop key areas of comparative difference in our chosen markets.

“Through this commitment CITEC remains the only full service Australian ICT outsourcer to obtain certification to AS/NZS 7799.2:2003, and we are very proud of that achievement.”

In May 2004 CITEC announced it was the first full service ICT outsourcer to achieve company-wide certification by SAI Global Limited against AS/NZS 7799.2:2003, building on its long-standing ISO 9001:2000 certification.

Certification to AS/NZS 7799.2:2003 is becoming a mandatory criterion for many security-conscious purchasers of ICT services. The certification focuses on effective people, systems and facilities.

Together with CITEC’s ISO 9001:2000 quality system and ITIL-compliant service management, this certification gives objective assurance to existing and prospective clients that their facilities are being managed to an internationally recognised standard.

During the audit process SAI Global auditors commented on the ongoing commitment of CITEC to improve its formally certified business management systems, and the positive attitude and awareness of staff regarding CITEC’s quality and security certifications.

“The auditors specifically commented on this commitment and the positive attitude, awareness and associated evidence at the closing meeting,” Peter said.

“The auditors also commented favourably on CITEC’s strong organisational commitment to excellence in service delivery.”

CITEC’s commitment to maintaining relevant industry certification includes staff attaining certification by vendors such as Symantec, Cisco, and Microsoft, and industry bodies, such as the International Information Systems Security Certification Consortium [(ISC)2], which issues the Certified Information Systems Security Professional (CISSP) qualification.

CITEC staff actively participate in information security forums, including the Information Security Industry Group (ISIG) and the global Information Systems Audit and Control Association (ISACA), ensuring our people, systems, and facilities provides our clients with objective assurance that their security risks are well managed.

The next surveillance audit of CITEC will be conducted by SAI Global in November 2005.

Read more CITEC Confirm feature news