Security

Security is built into every aspect of our operations. The entire data centre is accredited to ISO/IEC 27001 standards, the only auditable international standard which defines the requirements for an Information Security Management System (ISMS). The standard is one of the most rigorous anywhere in the world. Manx Telecom has been accredited to this standard since 1994, and is one of only three organisations on the Island to hold the ISO/IEC 27001 accreditation, which has been awarded to only 363 companies in the UK.

Manx Telecom’s ISO 27001 certification covers all Manx Telecom’s service operations, fixed and mobile networks, IP networks, data centres, business systems provision, repair services, access network, strategic network development, and power and estate management. In order to maintain the qualification, we are audited twice yearly by Lloyds Register Quality Assurance (LRQA) which gives an independent check on the security of the Manx Telecom’s systems and procedures.

Within the new Data Centre, Manx Telecom provides managed services to customer platforms which are compliant with PCI DSS; the world’s most advanced and most stringent security standard for online payment processors. PCI DSS is the “gold standard” for protecting customer account data.

Manx Telecom staff dealing with sensitive data, or involved in the security or resilience of MT’s systems, are security vetted via the Defence Vetting Agency, which carries out the vetting for the UK Ministry of Defence and other UK government agencies. Our security policies apply to everyone: full-time and part-time employees, contractors, consultants and business partners working within Manx Telecom and at all locations. The policy also applies to products, services and processes developed or commissioned by Manx Telecom, or acquired from any external supplier.

Not only does Manx Telecom apply the strictest security and compliance standards to its operations, we can also assist customers in achieving the same standards – as many of our staff are trained as ISO27001 Lead Auditors. We have also assisted customers in achieving PCI compliance for their services hosted within our data centre.

In addition to the ISO27001 accreditation, Manx Telecom also holds an ISO 9000: 2008 standard which covers our entire management systems and administrative operations. This accreditation ensures that our systems meet international, national, regional, local, and industry standards, plus other criteria which are relevant to our business. Having certification to an internationally recognised quality management standard such as ISO 9001 provides clients with independent verification that quality assurance is embedded throughout the entire company.