ISO/IEC 27001:2013 is an internationally recognised information security management standard which assists organisations in identifying and managing risks to information security. It considers confidentiality, integrity and availability requirements across all relevant business operations.
eCOGRA is the first testing laboratory that specialises in the online gambling to have been awarded ISO/IEC 17021-1:2015 accreditation, which is a prerequisite for carrying out third-party ISO/IEC 27001:2013 audits and accredited certifications of Information Security Management Systems (‘ISMS’).
It is evident that online gambling regulators are already moving towards requiring licence holders and their service providers to obtain ISO/IEC 27001:2013 certification. Many licensing jurisdictions currently waive certain security auditing requirements if licence holders are ISO/IEC 27001:2013 certified, enabling the independent regulatory testing and certification process to be expedited with potentially significant cost savings, effort and a quicker time to market.