ISO 27001 certification


ISO 27001 is a security management standard that specifies security management best practices and comprehensive security controls following the ISO 27002 best practice guidance. The basis of this certification is the development and implementation of a rigorous security program, which includes the development and implementation of an Information Security Management System (ISMS) which defines how DAS perpetually manages security in a holistic, comprehensive manner. This widely-recognised international security standard specifies entities:

  • Systematically evaluate our information security risks, taking into account the impact of company threats and vulnerabilities.
  • Design and implement a comprehensive suite of information security controls and other forms of risk management to address company and architecture security risks.
  • Adopt an overarching management process to ensure that the information security controls meet our information security needs on an ongoing basis.

DAS’ implementation of and alignment with ISO 27001 demonstrates a commitment to information security at every level of the organization. DAS is assessed by an independent third-party auditor to validate alignment with the ISO 27001 standard. Compliance with the internationally-recognized standard and code of practice is evidence that the DAS security system is comprehensive and in accordance with industry leading best practices.

How does this certification impact DAS?

DAS welcomes the ISO 27001 standard and best practices into our organization. The certification confirms our commitment to the security, confidentiality, and availability of our services. The key to these standards is the development, implementation, and continuous improvement of DAS’ rigorous security management program, which forms the foundation of DAS’ security approach.

Which DAS regions are covered?

The ISO 27001 scope applies to the following DAS offices:

  • Bristol
  • Bedwas
What does this mean to you as a customer?

Our ISO 27001 certification demonstrates our commitment to information security at every level. Compliance with this internationally-recognised standard, validated by an independent third-party audit, confirms that our security management program is comprehensive and follows leading practices. This certification provides more clarity and assurance for customers evaluating the breadth and strength of our security practices.

Who is the certifying agent?

The British Standard Institute (BSI), an ISO certifying agent accredited by UKAS Management Systems.

Can you provide a copy of the ISO 27001 standard?

The ISO 27001 standard is available on the ISO website.

ISO has made the decision to copyright these standards in an effort to help fund the processes leading to development.

Details regarding the ISO 27001 standard can be found here:

Privacy Notice

Our privacy notice sets out our commitment to processing your personal information fairly and transparently.

Learn more