We do everything we can to ensure our information security. But incidents might still happen. That is why ISO 27001 requires Sofico to have and enforce a clear security incident policy.
Employees and contractors report any observed or suspected security weaknesses in our systems. Once an incident is reported, we have procedures in place to ensure a quick, effective response, and to gather the necessary information to serve as evidence.
In addition, the gained knowledge from security incidents is used to reduce the likelihood or impact of future incidents.
Return to all videos.