Suffolk, VA – Ishpi Information Technologies, Inc. (DBA ISHPI), a CMMI Level 5 Federal Information Technologies services provider is pleased to announce that we have successfully achieved the International Organization for Standardization/International Electrotechnical Commission (ISO/IEC) 20000-1:2018 certification and 27001:2013 certification. 

Under the new ISO 20000-1:2018 international standard for Information Technology – Service Management and the ISO 27001:2013 Information Security Management, ISHPI’s audit by DQS ensures our federal government customers that ISHPI is committed to delivering, maintaining, and continuously improving upon a high level of service while providing them with the highest level of Information Security Management. 

“We have been unwavering in our mission to continually improve upon the quality services and security we provide our clients” said, James L. Diggs, ISHPI’s Sr Vice President and COO.  “This is just another step in our overall initiative to continuously improve so we can deliver the quality services and security our clients have come to expect and deserve.”

About the ISO 20000-1:2018

ISO 20000 is the international standard for IT Service Management (ITSM), published by ISO (the International Organization for Standardization), and ICE (the International Electoral Commission). To become an international standard, ISO 20000 had to be agreed upon by a majority of member countries, which means it is accepted by a majority of countries worldwide.

The standard describes a set of management processes designed to help deliver more effective IT services.  ISO 20000 gives the methodology and the framework to help manage the ITSM, while allowing a company to prove that the company follows best practices. With the requirements of the standard enable a company to set up best practice, helping to improve the delivery of IT services. ISO 20000 is applicable to any company size and any industry.

About the ISO 27001:2013

ISO/IEC 27001:2013 specifies the requirements for establishing, implementing, maintaining and continually improving an information security management system within the context of the organization. It also includes requirements for the assessment and treatment of information security risks tailored to the needs of the organization. The requirements set out in ISO/IEC 27001:2013 are generic and are intended to be applicable to all organizations, regardless of type, size or nature.

Learn more by visiting:  https://www.iso.org