Gulf Air was recognized by Bureau Veritas, a global leader in Testing, Inspection and Certification (TIC), for successfully upgrading its Information Security Management System to the latest ISO 27001:2013 standard. The standard specifies the requirements for establishing, implementing, maintaining and continually improving an Information Security Management System.
The certification was awarded to Mr. Maher Salman Al Musallam, Gulf Air A/Chief Executive Officer, by Mr. Zulfiqar Haider, Chief Executive of Certification at Bureau Veritas Bahrain at the awards ceremony which was attended by members of Gulf Air’s Information Security Committee.
Accepting the certification Mr. Maher Salman Al Musallam said: “As a global airline, much of our work involves handling sensitive and critical information, including passenger data. We are committed to providing the highest standard of Information Security and this involves constantly assessing our capabilities and modifying/enhancing them. I am delighted to receive this upgraded certification, reflecting our implementation of a strict framework to guarantee the protection and security of information across the board – further helping to achieve customer satisfaction.”
“Gulf Air is considered a reputable operator in the GCC region maintaining information security standards and meeting ISO requirements. The same was witnessed by our assessors during the certification process. This upgrade will enhance customer confidence and satisfaction in doing business with Gulf Air,” said Mr. Zulfiqar Haider.
Dr. Jassim Haji, Gulf Air Director of Information Technology, commented: “We are pleased to achieve yet another Information Technology enhancement and to be recognized for our team’s work. This advance in Information Security not only demonstrates our technological control and the evolved measures we have in place but also our high level of user awareness.”
Gulf Air has successfully managed its ISO 27001 certification over the past four years, and it is the first airline in the world to be accredited for its Information Technology practices under five (5) different ISO Certificates. The Information Technology ISO certifications were in the five areas of Quality Management, Environmental Management, Service Management, Information Security Management and Energy Management Systems.