opennav

EisnerAmper Ireland | ISO 27001:2017 Certification  - EisnerAmper Ireland Ireland

EisnerAmper Global

ISO 27001:2017 Certification 

EisnerAmper Ireland received certification to ISO 27001:2017 in February 2022 from the National Standards Authority of Ireland (NSAI). ISO 27001 is the world’s foremost Information Security Management System used by organisations in over 170 countries. Achieving accredited ISO 27001 certification demonstrates that EisnerAmper Ireland follows information security best practices, and has successfully implemented an Information Security Management System, audited by an independent expert assessment.

Our Information Security Management System is assisting us in how we differentiate ourselves by focusing on, and being committed to, ensuring the confidentiality, integrity and appropriate availability of information that EisnerAmper Ireland is the controller of.

ISO 27001:2017 involves: 

  • Systematically examining  information security risks, taking into account threats, vulnerabilities, and impacts;  
  • Better managing information security by designing and implementing a coherent and comprehensive suite of information security controls; and  
  • Implementing an overarching management process to ensure that information security controls continue to meet our needs on an ongoing basis.  

Paul MacCarthy, Head of Operations, is responsible for supporting the efficient running of the Firm’s operations by managing specified internal functions such as EisnerAmper Ireland’s Integrated Management System (IMS), which includes EisnerAmper Ireland’s Information Security Management System.  

The Firm’s Information Security Management System is underpinned by the EisnerAmper Ireland Information Security Policy Statement which commits to clearly identify the information to be protected and establishes, operates, maintains, and as necessary updates controls to protect the information. 

The benefits of the ISO 27001:2017 are: 

  • Improved security;  
  • Best practice data management; 
  • Implementation of controls;  
  • Allows for the secure exchange of information;  
  • Fosters a culture of continuous improvement; and  
  • Internationally recognised certification.