KRJC is ISO 27001:2013 Certified

About ISO 27001:2013 Certification

ISO/IEC 27001:2013 specifies the requirements for establishing, implementing, maintaining, and continually improving an information security management system within the context of the organization. It also includes requirements for the assessment and treatment of information security risks tailored to the needs of the organization. The adoption of an information security management system is a strategic decision for an organization. The aim of ISO 27001:2013 is to provide an information security management system preserves the confidentiality, integrity, and availability of information by applying a risk management process and gives confidence to interested parties that risks are adequately managed.

What This Means for KRJ Consulting and Our Clients
QAS International’s assessment and approval apply to the following scope at KRJC:   Information Security Management System for securing and ensuring that KRJC (located in Columbia, SC) employees who have access to and use of government provided IT are compliant with the government requirements for access to and use of government IT. The system also ensures that KRJC employees and subcontractors who have access to and use of KRJC provided IT are compliant with KRJC requirements for access to and use of KRJC IT. This is in accordance with the Statement of Applicability. 

This International Standard can be used by internal and external parties to assess the organization's ability to meet the organization’s own information security requirements. Being ISO 27001:2013 certified means our information security management system has been enhanced and certified to provide you with confidence that KRJC effectively manages the security of information throughout our supply chain.