James Kon
Unified National Networks (UNN) obtained the ISO/IEC 27001:2022 certification for implementing an effective information security management system (ISMS) and improving its cybersecurity posture in March.
The achievement comes after completing a rigorous process that included training employees internally from all departments, conducting risk assessments, treating identified medium and high risk and carrying out internal audit exercises. The results were then compiled and reviewed by management before an external audit was conducted by the British Standards Institution (BSI).
According to UNN, ISO/IEC 27001:2022 is an international standard outlining specifications of ISMS to address information security that include people, processes and technology.
The certification protects the confidentiality, integrity, and availability (CIA) of an organisation’s data and information assets and systems. It is one of the most globally recognised certifications in line with security standards from BSI.
UNN has continuously contributed towards information and communications technology (ICT) adoption for the nation in line with Brunei Vision 2035 and invested in key initiatives and undertook programmes to build and modernise its network infrastructure and IT operations.
The increase of online traffic made it clear that it is vital for the network infrastructure and data centre to accommodate higher speed and capacity for the Sultanate to experience a resilient network.
The launch of UNN cloud hosting service as part of its Infrastructure-as-a-Service (IaaS) portfolio in December 2021 and its Distributed Denial of Service (DDoS) in February 2022 are parts of its approaches to protect organisations and their businesses from threats and cyberattacks, ensuring their data and service are managed locally, residing in geographically redundant and secured UNN Data Centre facilities, and remains uninterrupted as the number of people going online increased.
To maintain the network’s resilience and protect UNN Data Centre facilities, it is necessary for UNN to be ISO/IEC 27001:2022 certified for the implementation of an effective ISMS framework and improvements of its cybersecurity posture. The certification verifies that UNN’s ISMS has the right processes and procedures in line with international standards on information security.
It is UNN’s top priority to secure all types of information and data provided by stakeholders, clients, employees, partners, regulatory agencies, suppliers, and communities from unauthorised access, disclosures, modification, and eradication.
Receiving the certification can be a differentiator, demonstrating UNN’s commitment to information security and providing a competitive edge in the marketplace.
Many regulations and standards require UNN to implement information security controls and therefore the certification will help UNN to demonstrate compliance.
As the ISO/IEC 27001 certification implies an annual recertification with a full set of criteria to be audited, UNN established it as a continuous process within the organisation, supporting UNN’s strategic focus to be a trusted partner for ICT services and digitalisation, with efficiency gains, cost savings and improved operations.
The benefits of a well-implemented ISMS can improve an organisation’s security posture, reduce risk of data breachers, and enhance customer confidence.
Overall, with the certification, UNN demonstrates its commitment to information security and regulatory compliance, setting itself apart as a leading institution in Brunei.