China Unicom (Hong Kong) Operations Limited Awarded ISO 27001:2013
With united efforts between China Unicom (Hong Kong) Operations Limited and SGS, China Unicom was able to be ISO 27001:2013 certified on their provision of collocation, facility management and managed services in July 2017.
The certification ceremony was held on 7 August 2017, our Senior Director, Mr. Ben Tsang, was invited to present the certificate to the China Unicom.
Being wholly owned subsidiary of China United Network Communication Group Company Limited since 2008, China Unicom (Hong Kong) Operations Limited endeavors to establish a Global Solution and Management Centre for the provision of total telecom services including internet data centre, cross-border network services, cloud services and managed services. It strives to offer reliable end-to-end global telecommunication solutions and services to multi-national corporate, Chinese enterprises, small-medium enterprises, wholesale service providers and personal users.
As one of the shareholder in Hong Kong telecommunication market, China Unicom (Hong Kong) has made adaptation among departments to establish Information Security Management System, especially in terms of operation, in order to implement "Plan-Do-Check-Act" (PDCA) model adopted from ISO 27001.
China Unicom (Hong Kong) has an internal networking audit information system, and performs the responsibilities of supervision, evaluation and service; explore to establish a “three-tier collaboration” working mechanism among professional departments, units subject to audit and supervision system and human resource and disciplinary inspection departments to improve the audit quality and efficiency. With the strengthened control over information security risks and security system construction, all safety risks are identifiable, controllable and manageable, and that the results of the security efforts are assessable. With the improvement in information security control, no serious security incident occurred in the system during 2016.
About ISO 27001:2013
ISO/IEC 27001:2013 states the requirements for establishing, implementing, maintaining and continually improving an information security management system within the context of the organization. It could demonstrate to existing and potential customers, suppliers and shareholders the integrity of company’s data and systems and the commitment to information security. It enforces information security and reduces the possible risk of fraud, information loss and disclosure. Learn more
In the field of Information Technology, SGS has been taking the lead to provide enterprises with an array of IT certification and training services. SGS is the first batch of certified organizations to provide ISO 20000 and ISO/IEC 27001 certifications and the first organization to be certified to provide auditing from both CSA STAR Certification and EuroCloud. SGS is also the first batch of certified organizations to bring ECSA auditing trainings to China.
SGS provides certification auditing and training services on information security management systems, should you have any inquires,please contact us at:
Certification and Business Enhancement
t: (852) 2765 3620