Gallagher Security secures ISO 27001:2022 recertification for ISMS

Gallagher Security has achieved recertification to the updated ISO/IEC 27001:2022 standard for Information Security Management Systems (ISMS).

The renewed certification follows Gallagher Security's previous certification to ISO/IEC 27001:2013, highlighting the company's ongoing approach to maintaining standards in information security. This transition to the 2022 version is intended to demonstrate Gallagher Security's approach to addressing changes in cybersecurity threats and continual improvement in risk management.

Mike Randle, Compliance Engineer at Gallagher, said, "Achieving ISO 27001 recertification demonstrates the strength and resilience of our information security practices. Our customers expect us to meet globally recognized standards like ISO 27001 because they rely on us to safeguard their sensitive data. This certification provides assurance that their information is being managed and protected with the highest level of care, in line with best practices for risk management."

The ISO 27001 standard is recognised worldwide for its framework supporting organisations in managing and improving the security of sensitive information. Gallagher Security reports that the adoption of the latest 2022 version of the standard has resulted in updates and enhancements to the company's internal systems and processes, aiming to ensure the integrity, confidentiality, and availability of key data.

Sam Dowse, Governance, Risk, and Compliance Lead at Gallagher, stated, "This is more than a compliance milestone - it's a reflection of our long-term commitment to security. As the threat landscape expands in complexity and scale, it's important that we demonstrate to our end customers that we take data protection seriously. This certification gives them confidence that we are doing just that."

The company has said that this certification reinforces its track record in achieving international standards and meeting regulatory expectations in markets worldwide. Gallagher Security describes this latest accreditation as part of an ongoing commitment to meeting information security requirements and maintaining organisational excellence in its high-security solutions.

The ISO/IEC 27001:2022 standard is the latest revision of the globally recognised framework for information security management and places a stronger emphasis on risk assessment, resilience, and the evolving cybersecurity landscape. Compliance with this standard requires companies to demonstrate robust processes and continual identification and management of information security risks.

The recertification process required Gallagher Security to align its policies and procedures with new and updated requirements in the ISO/IEC 27001:2022 standard. This included reviews and updates across systems, controls, and training efforts aimed at ensuring information security objectives are met and that the company keeps pace with the changing nature of digital and physical threats.

Gallagher Security operates internationally and serves clients in areas such as government, military, commercial, healthcare, transportation, and education. The company reports that it views third-party verification through standards such as ISO 27001 as an important component in providing assurance to customers and stakeholders regarding its approach to data protection and security management.