As part of Invesco’s overall commitment to information security and GDPR, we have implemented the requirements set out in the internationally recognised information security standard ISO 27001. This important information security standard ensures that Invesco will provide appropriate levels of assurance to Employers and Trustees to maintain the confidentiality, integrity, and availability of confidential and sensitive information including member scheme data. Invesco achieved certification of the ISO 27001 standard in January 2018.
Below is a summary of the areas covered within the ISO 27001 standard:
- Physical & Environmental Security
- Operations Security
- Human Resources Security
- Communications Security
- Asset Management Assessment
- Systems Acquisitions
- Development & Maintenance
- Access Control Supplier Relationships
- Cryptography Information
- Security Incident Management & Business Continuity
Invesco is the first Registered Administrator for pensions in Ireland to obtain ISO 27001 certification.