Cardiff based iCOM Reward Works, provide a range of Benefit and Reward solutions for public and private sector businesses across the UK to deliver benefit, loyalty and incentive outcomes for their clients’ employees and customers.
The confidentiality of data and reliability of services is a top priority for the company as stakeholders (customers, partners, suppliers and staff) must be able to have confidence in iCOM’s information and data security.
ISO27001 provided the recognised framework to help manage the company’s information security risks and client expectations around their data safety.
iCOM Reward Works already had a well-established ISO 9001 Quality Management System and ISO 14001 Environmental Management System in place when they approached Assent to support their ISO 27001 Information Security implementation.
The company’s team made a strong start implementing the requirements of ISO 27001 before asking Assent to provide a Gap Analysis to advise on improvements ahead of Certification.
In addition, Assent provided a full internal audit of iCOM’s ISMS and supported the team during the stage 2 external audit which resulted in the company being recommended for ISO Certification within 12 months of starting their journey.
Emma-Jane Mounter (Project Manager and ISMS Rep) Said:
Achieving ISO27001 was a main goal for iCOM Reward Works, especially as data security is of utmost importance to the company and services we provide. We worked closely alongside Robert Clements and Jazmin Taylor at Assent who were reliable and responsive to any questions or assistance we needed.
Our biggest hurdle was understanding how certain clauses and parts of the standard applied to the everyday life of our company and Robert helped to put these into context for us so we could ensure we were creating a best-practice system which worked effectively across the whole business.
Working alongside Assent was a pleasure and we were able to achieve our ISO27001 certification within 12 months!