What is ISO 27001:2013?
ISO 27001:2013 is an international certification that specifies the requirements for information security management. It is a revision to ISO 27001:2005, which covers the same area of interest. Regardless of the type, size, or nature of an organization, ISO 27001:2013 is designed to be flexible enough to apply.
In order to ensure the safety of information, the certification has to set forth requirements for each step in the security process. There are many aspects involved in keeping candidate, employee, affiliate, and user data secure in all organizations. Here are some of the processes of information security management systems that are taken into consideration:
- Continuous optimization
- Assessment of efficiency
- Treatment of security risks
This information is taken and paraphrased from iso.org. You can find details, revisions, and more at the link provided.
The importance of ISO 27001:2013
Information security is especially important in recruitment. As an employer, you want your candidates to feel as though their sensitive information is in good hands.
In Recruitee’s case, our goal is to keep your information and your candidate’s information safe and secure. We are a cloud-based ATS (Applicant Tracking System) outside the jurisdiction of the Patriot Act, and our servers are safe and secure. You can feel at ease using Recruitee to manage candidate information, and your candidates should know that they are safe with us, too!