Exploring Cyber and Information Security Certifications

Information is one of a company’s most important assets, so protecting it is crucial. As a result, we are often asked by our customers about our security credentials. We have always operated to the highest levels of information security, which has gained us ISO/IEC 27001 and Cyber Essentials certifications. As BrightGen’s Information Security Consultant, in this blog post I explore the theme of information security, along with what these certifications mean to us and our customers.

“We trust BrightGen with our highest profile customer details – trust is everything to us.”

VIP and Premium Services Lead, Heathrow

About information security

Information security performs the following important roles: 

1. Protects our ability to function

Information security ensures that an organisation can continue its operations without disruptions caused by security breaches, cyberattacks, or data leaks. For example, an e-commerce website with robust information security measures can continue processing orders and safeguard customer data even in the face of attempted hacking.

2. Enables the safe operation of applications implemented on our IT systems and services

Simply put, it ensures that software applications, online services, and IT systems can run without being compromised by security vulnerabilities.

3. Protects the data we collect and use

Information security safeguards sensitive and confidential data from unauthorised access, theft, or exposure. For example, healthcare organisations implement information security measures to protect patient records, ensuring that only authorised personnel can access patient data.

4. Safeguards the technology we use

Information security extends to the protection of hardware, software, and infrastructure components to prevent tampering, theft, or damage.

Cyber security is a specific form of information security, with a focus on preventing cyber attacks. Increasingly, our customers and partners ask for evidence of our information security management capabilities. Certifications are an important way of outwardly demonstrating our commitment to information security.

ISO/IEC 27001 certification

ISO/IEC 27001 is an international standard on how to manage information security. It makes clear how to establish, implement, maintain and continually improve an information security management system. By acquiring this certification, we can be confident that our information assets are more secure. It also allows us to demonstrate a high level of information security more easily to our customers and partners.

Cyber Essentials 

Cyber Essentials is a government-backed scheme set up by “The National Cyber Security Centre”. We signed up this initiative in order to protect our organisation against a range of the most common cyber attacks.


Cyber attacks come in many shapes and sizes, but the vast majority are very basic in nature, carried out by relatively unskilled individuals. They’re the digital equivalent of a thief trying your front door to see if it’s unlocked. By signing up to Cyber Essentials, we hope to avoid these simple attacks. In this way, our customers and partners can be sure that BrightGen’s priority is their security. 

Get in touch with BrightGen today to support your Salesforce projects or ongoing service management.