ISO 27001 compliance in a system
My company is a Telco. We are going to buy a revenue assurance and fraud management (RAFM) system. That system will take data from other Telco source systems (like switch, billing system etc.) and analyze for us and help us to find data exceptions. Is it a must that our RAFM vendor system comply with ISO 27001 certification. Or we can consider that it is simply a monitoring aiding tool and ISO compliance is not a must. Kindly advise. Thank you
Assign topic to the user
ISO 27001 compliance or certification would be a must if you have customers who require this standard, or if you have a regulation that would require it, or if your top management decided this has a strategic importance. If none of this is true, then there is no requirement to comply with ISO 27001.
Comment as guest or Sign in
Nov 09, 2022