Wednesday, September 12, 2007
Sweden to completely phase out development assistance to Sri Lanka within 4 years
Mervyn goes berserk in Kiribathgoda
Rs. 15 million to overhaul FM’s house
Hyundai comes with the lowest bid
Editorial
The importance of being W.J.M.
The Right to Know
Thai police deck LTTE’s KP
The COPE corroborates corrupt governance: Ravi K.
Tamils and the unitary state
Govt. mere bystander in protecting citizens-AHRC
Chandrika and Vimukthi attend gala charity dinner
Diplomatically lacking!
Mannar Bishop wants immediate restoration of civil administration
180 days to uplift east
Resign if you can’t act justly – UNP tells Speaker
SriLankan staff fingerprinted over anti President sticker
CAA Chairman summons special meeting to tender resignation
JVP calls meeting to decide on supporting government at budget
‘Black Week’ at Sri Jayewardenepura campus
KumbukRiver eyes travel world Oscars
SriLankan Airlines flying high with paperless ticketing
Ultimate noodle experience at Cinnamon Grand
Brandix, MAS exchange ownership of Linea Clothing and Textured Jersey Lanka
Dankotuwa Porcelain poised for next wave of growth
CEAT wins honours for Sri Lanka in Total Quality Management
Holcim invites entries for global awards on sustainable construction projects
Vasu files application to prevent holding of excess shares in Com Bank
Foreign buying props Bourse
Massive fire in factory leaves five injured
GMOA to protest against irregular transfers
Deputy health Minister, union lock horns over vehicle controversy
NCTAD in fresh push for regional cooperation among developing countries
 
SLT Broadband network awarded highest int’l information security standard

Sri Lanka Telecom [SLT], the country’s number one telecommunication service provider, has been awarded the highest international information security standard, BS 7799 / ISO 27001 certification for its island-wide broadband network operations services including MPLS based IP VPN services, ADSL services, Business DSL services and ISDN services.
SLT became the first company incorporated in Sri Lanka to achieve this security standard by being listed in the prestigious Information Security Management System [ISMS] Registry

[http://www.iso27001certificates.com]. This certification (ISOIEC: 27001:2005) awarded to SLT’s Internet Protocol (IP) and Broad Band (BB) division from the International Organisation for Standardisation recently. It was the second division to receive this accreditation within SLT, apart from the British certified BS7799 standard. Last year SLT data centre also awarded the highest international information security standard, BS 7799 / ISO 27001 certification to services which include hosting of the client’s data and provisioning of other services like Co Locating, Dedicated Hosting, Virtual Hosting of Web, Database, e mail and Managed Service


“SLT is the only service provider to have received this accreditation, and this is an important milestone for us. Customers are very keen to understand how trustworthy an organisation is as their business critical applications depend on the network and services that are provided. Information is an asset, which like other important business assets, adds value to an organisation and consequently needs to be protected.

Information security has three components – confidentiality, which ensures that information is accessible only to those authorised to have access, integrity, which safeguards the accuracy and completeness of information and processing methods along with availability, which ensures that the authorised user has access to information and associated assets when required,” SLT Chief Marketing Officer Priyantha Perera said.
The scope of receiving an international standard includes first having to apply for it and undergo many audits, which focusses on how an organisation can handle the offering of a model for the establishment, implementation, operation, monitoring of, reviewing, maintaining and improvement of an Information Security Management Systems (ISMS) as well as being used in order to access conformance by interested internal and external parties.


The organisation is required to implement identified improvements in ISMS, take appropriate corrective and preventive actions, maintain communications with all stakeholders as well as validate improvements. It also has to perform monitoring procedures, conduct periodic reviews of ISMS for effectiveness, review level of acceptable and residual risk and conduct internal ISMS audits at planned intervals as well as Formulate and implement a risk mitigation plan and implement controls selected to meet the control objectives.


Defining the scope and policy of ISMS, identifying and assessing the risks, along with managing those risks through control objectives and controls through the preparation of a statement of applicability are also included within the scope.


Achievements
Commenting on its achievement, SLT Chief Executive Officer Shoji Takahashi stated “our primary objective is to provide the maximum security possible to our customers’ data. In realising this, we adopted multiple approach addressing issues related to technology, process and people simultaneously. This is how we achieved our goal. In an era markets are being globalised and SLT, “is becoming a global player who caters to both local and global customers, the information security standards make true sense to our customers and us who care for their information security,” added Mr Takahashi.


The accreditation was a strategic decision of SLT as it would help the IP and BB division to have improved understanding of business aspects, identify critical assets via the business risk assessment and to mitigate operational and business risk, provide structure for continuous improvement, be a confidence factor internally (interdepartmental) and externally (customers and investors), ensure Business Continuity and Disaster Recovery (RA/RTP) as well as enhancing the knowledge of capital that will be stored and managed in a business management system.