(PRI: Warrendale PA) -- PRI (Performance Review Institute) Registrar has met the stringent requirements of ISO 17021 and ISO 27006 to gain ANAB accreditation to provide certification services to the internationally recognized information security management system (ISMS) ISO/IEC 27001:2013—“Information security management systems.”

ISO 27001 specifies the requirements for establishing, implementing, maintaining, and continually improving an information security management system within the context of an organization. It also includes requirements for the assessment and treatment of information security risks tailored to the needs of the organization. The requirements of ISO/IEC 27001:2013 are applicable to all organizations, regardless of type, size, or nature.

“Increasingly, data breaches are a significant risk to an organization’s operational continuity,” says Randy Daugharthy, director of PRI Registrar. “Technologies are constantly changing, and the need to implement an adaptable information security system is critical to enabling the use of these new technologies in a safe and confident manner.

“Information security management system certification demonstrates commitment to your stakeholders that you have implemented a world-class risk-based data security management system. PRI Registrar is pleased to provide this important certification.”

PRI provides two additional related certification services: ISO 27017 and ISO 27018. The former is an international code of practice for cloud-based information that establishes clear controls for information security risks. For cloud-service providers already certified to ISO 27001, ISO 27017 is a complementary standard that helps reassure clients of their information safety.

ISO 27018 is used to manage personally identifiable information (PII). Cloud services providers that process significant volumes of PII can be certified to ISO 27018 or in conjunction with ISO 27001 and/or ISO 27017. This international code of practice establishes controls for information backup management, information recovery and erasure, procedures for customer disclosure, and more.

About PRI Registrar

Since 1995, PRI Registrar, a management systems registrar, has certified many organizations to achieve certification to international quality, environmental, health and safety, and now information security standards. As an affiliate of SAE International, PRI Registrar is a not-for-profit organization, uniquely motivated with a mission and commitment to drive performance in any industry it serves.
Learn more at https://www.priregistrar.org/ or contact PRI Registrar at priregistrar@p-r-i.org.

About PRI

The Performance Review Institute (PRI) is a not-for-profit trade association started in 1990. PRI is a global administrator of industry-managed critical process accreditation programs focused on improving process and product quality with collaboration among stakeholders in industries where safety and quality are shared goals. Learn more at https://p-r-i.org/.

About ANAB

The ANSI National Accreditation Board (ANAB) is a nongovernmental organization that provides accreditation services and training to public- and private-sector organizations, serving the global marketplace. ANAB is the largest accreditation body in North America and provides services in more than 75 countries. Learn more at https://anab.ansi.org/.