ISMS Policy
DDD is committed towards fulfilment of the Security, Availability, Confidentiality, Processing Integrity and Privacy of all the system elements including Infrastructure, Software, People, Processes and Data to achieve the business objectives.
The security of information and Systems is therefore regarded as fundamental to the successful business operation of DDD. DDD has adopted an Information Security Management System (ISMS) comprising of the Information Security Policies, Procedures and Processes to effectively protect DDD and its customers from information security threats, whether internal or external, deliberate, or accidental.
ISMS in DDD is aligned to the requirements of ISO/IEC 27001: 2013 and Trust Service Criteria 2017. The management of DDD is committed to ensure that:
Regulatory and legislative requirements related to DDD are met.
Information security awareness is provided to all DDD employees.
Risks are mitigated to an acceptable level through a risk management framework.
The information security management system is continually improved .
Appropriate resources are allocated to implement, operate, and review an effective Information Security Management System.
All stakeholders are communicated about their roles and responsibilities in Designing, Implementing, Maintaining and Continually improving ISMS.