REN Electric and REN Services have obtained certification for their Information Security Management System (ISMS) according to the ISO 27001 standard.
This distinction, awarded by the Société Générale de Surveillance (SGS), attests to the maturity of processes and the implementation of best practices in information security within the two certified scopes:
1) REN Electric - Protection of information in the PCN network as well as related information systemsa nd operational and support activities for the infrastructure.
2)REN Services - Protection of management information for the telecommunications security network which ensures reliable data transmission among facilities of the National Electricity Transmission Network, including those necessary for the Global Technical Management of the National Electrical System and the National Gas Transmission Network.
The ISMS established by REN enables the management of risks affecting the vectors of confidentiality, integrity, and availability of information through a systematic approach and continuous improvement. Safeguarding these three pillars of information security ensures the image, reputation, and credibility of REN, contributing to the protection of its critical infrastructure and essential services it supports.
The implementation of the ISMS aims to contribute to REN's information security, as well as the security of all associated resources, whether procedural, technological, or human. Protecting information and information assets is fundamental to REN's strategic success and the sustainability of its business.
The inherent multidisciplinarity of the standard, encompassing more than 114 controls distributed across 14 distinct categories, required the development of an extensive set of policies, procedures, controls, and activities that had to be collaboratively worked on and implemented by various areas of the company.
The certification is valid for 3 years.