We are thrilled to announce that FYNXT recently passed its first annual surveillance audit for the ISO/IEC 27001:2013 certification! Achieving this prestigious international standard for information security management in 2022 was a huge milestone, but maintaining it requires continuous efforts and firm commitment.
As a Singapore-based fintech providing digital front office solutions for multi-asset brokers, ensuring the security of sensitive client and company data is critically important. The ISO/IEC 27001:2013 certification validates that FYNXT has implemented rigorous controls and best practices for managing information risks and safeguarding confidentiality, integrity, and availability of information.
Aeby Samuel, CEO & Founder at FYNXT said that “Successfully clearing our first ISO 27001 surveillance audit is a testament to FYNXT’s unwavering commitment to excellence in information security. This achievement reinforces our dedication to safeguarding the trust and privacy of our clients’ sensitive data. I commend our ISO team and every employee for their dedication and hard work in upholding the highest standards of information security.”
Maintaining Compliance Through Continuous Improvement
Earning the initial certification was a great achievement, but the real test is continuously maintaining the standard. The annual surveillance audits assess the robustness of the information security management system (ISMS). We knew it would require ongoing vigilance and effort to pass these checks, so we have worked diligently over the past year.
Our ISO team, comprising cross-functional ISO pillars and champions from various teams, spearheaded activities to keep improving policies, processes and controls based on the Plan-Do-Check-Act cycle. We demonstrated the fulfillment of the ISMS requirements to the auditors from the certifying body, DQS, upon their arrival at our premises.
The audit encompassed reviewing processes and documentation related to areas like security policies, asset classification, human resources and training, physical office security, network security, incident management, and business continuity planning. Auditors interviewed several employees to verify they understand and comply with defined information security responsibilities per their roles.
After a rigorous 3-day assessment spanning 25 hours, the auditors determined that our ISMS continues to comply with the requirements of the ISO/IEC 27001:2013 standards. This successful surveillance audit underscores FYNXT’s dedication to information security as a culture and a continuous journey. This certification boosts the confidence of our clients towards information security and protection of privacy as we keep growing.
Acknowledging Our Team
We congratulate and thank our ISO team and all employees who helped ensure this positive outcome through their commitment to uphold information security practices in their daily work. Together, we have demonstrated that FYNXT doesn’t just pursue certifications as trophies or one-time projects. We back it up by ingraining information security in everything we do in order to truly earn client and stakeholder trust.
Onward and upward! Our next surveillance audit may be a year away, but our ISO 27001 journey never ends. At FYNXT, dedication to rigorous information security is integral to our identity and ongoing success serving the fintech industry. This achievement motivates us to continue raising the bar.
