The Digital Innovation team has just successfully completed an assessment for the new international certification of ISO/IEC 27001:2022 on information security management.

The assessment program was conducted by expert Nguyen Dang Quang from the world's leading international certification, inspection, and testing organization NQA, taking place over 3 days (January 6 - 8, 2025).

At Doosan Vina, expert Quang inspected and assessed the implementation of items according to the regulations of the ISO/IEC 27001:2022 standard, including 7 clauses and 93 appendices.

With a transparent approach and strict adherence to international standards, as well as going through many rounds of review and meeting all requirements for establishing, implementing, maintaining and continuously improving the information security management system, Doosan Vina has surpassed the strict requirements and been granted ISO/IEC 27001:2022 certification for the first time with the latest version of the Information Security Management System (ISMS) from Bureau Veritas Certification (BVC) and UKAS (the leading and only official accreditation body of the UK government). The certification is valid for 3 years and will be audited once a year. 

The certification is clear evidence that Doosan Vina has reached the highest standards in protecting customer information and data, ensuring maximum confidentiality and integrity. Certifying this certification also helps Doosan Vina build an information security management system that meets international standards, early identification of threats and risks that may affect the confidentiality and integrity of information, and timely measures to prevent and save costs in handling incidents related to information security.

Achieving this international certification is an important milestone in improving the efficiency of customer information management and security, affirming the commitment to customer safety, enhancing reputation, and promoting business activities in supporting project bidding, contributing significantly to the sustainable development of the company.

According to official statistics from the International Organization for Standardization (ISO), Vietnam currently has only nearly 40 enterprises that have achieved ISO/IEC 27001 standards on information security management systems, including software, IT, and other enterprises. Thus, if only considering the software sector, only about 4% of enterprises have achieved ISO 27001.

​​​​