HDEP International is proud to announce that its outsourcing facilities in Manila, Philippines have been awarded the ISO 27001:2005 certification for information security and business continuity. The ISO 27001 certification is the most coveted international information security certification and requires a rigorous review and implementation of all policies and procedures at a company. We believe that the certification is an essential element to being a responsive supplier of information processing solutions to the title insurance industry.
A critical aspect of the CFPB rules and ALTA Best Practices is information security. HDEP International studied the rules and information security requirements of both organizations, and determined that the best pathway was to gain the highest possible internationally recognized certification for information security – ISO 27001:2005.
ISO 27001:2005 certification is recognized as meeting and exceeding the requirements for ALTA Best Practices, as well as the CFPB rules. The lending industry is familiar with the ISO 27001 certification and has routinely approved companies that have achieved the certification.
The ISO 27001:2005 certification requires a top to bottom review of all procedures, policies, technology and physical infrastructure. It also requires the applicant company prepare a business continuity plan and implement backup methods and physical structures to recover from a disaster. Once certified, there are continuing compliance audits to maintain the designation.
Gaining ISO 27001:2005 certification requires a deep commitment to information security and business continuity. Once achieved, it becomes a pathway to other recognized certifications.
HDEP’s operations are ISO 27001 certified, and we will continue to maintain the highest security certifications to ensure that customer compliance requirements are met. As our customers already know, we are constantly looking for ways to be responsive, and we proactively worked towards this certification so that our customers would be well placed to meet the financial industry and regulatory compliance requirements set to take effect in the Fall of 2015, and in the years ahead.