FCS Laser Mail


	"The key to our success lies in the ability to interpret the needs of our clients". FCS Laser Mail is currently certified to ISO9001 (Quality Control), ISO14001 (Environmental Management) and ISO27001 (Information Security). We are assessed externally be SGS UK Limited on a six monthly basis. This assessment covers all three standards. Objectives are set and reviewed at six monthly management meetings, In this way, we will assure that our policy for customer satisfaction is achieved through our continual improvement plan. Please note: This is just an overview covering all three ISO standards. Additional information is available upon request. ISO27001 - Information Security All forms of Information are assets, and like all other important business assets, it is essential to FCS Laser Mail and subsequently needs to be suitably protected. As businesses increasingly become connected to the outside world via the internet and telecommunications, our Information Assets become exposed to a growing number of threats and vulnerabilities. Information can be written or printed on paper, stored electronically (or logically), transmitted by post or by using electronic means, shown on films or spoken in conversation. Whatever form the information takes, or however it is stored, it requires appropriate protection. The ISO27001 standard is designed to establish appropriate security protection for our Information Assets firstly by compiling an Asset Inventory, assessing the risks and then drawing up controls in the workplace to treat those risks. Information security is achieved by implementing a suitable set of controls, including policies, processes, procedures, organisational structures and software and hardware functions. These controls need to be established, implemented, monitored, reviewed and improved, where necessary, to ensure that the specific security and business objectives of FCS Laser Mail are met. These processes are monitored, reviewed and improved as part of the Integrated Management System to run in conjunction with ISO9001 and ISO14001 standards. The ISO27001 framework consists of the following main principles: Information Security Policy Introduction Information Security Scope Document Organisation of Information Security Asset Inventory Risk Assessment Risk Treatment Asset Management Human Resources Physical and Environmental Security Access Control Systems Acquisitions, Development and Maintenance Incident Management Statement of Applicability An internal auditing programme is followed and internal audits are carried out by Gary Walmsley. Management Review Meetings are held 6 monthly, chaired by Gary Walmsley and attended by the Management Forum. External reviews will be conducted on a six month basis by SGS United Kingdom Limited. Further in depth information is available upon request.