Comelec eyes ISO certification
MANILA, Philippines - Seeking the International Organization for Standardization (ISO) certification, the Commission on Elections (Comelec) is hoping to restore public confidence.
Comelec spokesman James Jimenez yesterday said the poll body wanted to secure ISO certification to prove that it is at par with international standards in securing private information.
“Having ISO certification easily means that our process has been checked and guaranteed to be effective and efficient,” Jimenez explained.
“It is a way of guaranteeing that the internal process is correct,” he added.
The Comelec’s capability to secure voters’ information has been put in question following the “Comeleak” controversy and stealing of a computer containing information from the Voter Registration System and Voter Search applications last January.
The National Privacy Commission has described “Comeleaks” as the “worst recorded breach on a government-held personal database in the world.”
Jimenez, however, expressed confidence that the ISO certification would help encourage the public to trust the Comelec again.
“We believe it can help in a sense that we know the process can be trusted as following standards to secure information,” Jimenez noted.
The Comelec previously ordered its Bids and Awards Committee (BAC) to conduct what it called “small value procurement” and tap a consultancy firm to secure the ISO 27001 certification.
Based on its website, the ISO 27000 family of standards helps organizations keep secure information assets, such as financial information, intellectual property, employee details, or information entrusted by third parties.
ISO 27001 in particular provides standard requirements for an information security management system (ISMS), which is a systematic approach to managing sensitive information so that it will remain secure.
- Latest
- Trending