Wiedemanni Translation Bureau is the first translation company in Estonia to have a ceritified information security management system
Wiedemanni Translation Bureau is Estonia’s first translation company (and second Estonian company overall) to have introduced an information security management system that corresponds to the International Standard ISO 27001:2005. ISO 27001 helps companies manage the information they themselves have created as well as the information made available to the company by its clients.
The International Standard ISO 27001:2005, which, surprisingly, is all but unknown in Estonia (in addition to Wiedemanni Translation Bureau, only the major state enterprise Eesti Loto AS has achieved ISO 27001:2005 certification), defines information security as protection of the confidentiality, integrity and availability of information.
In all of the aforementioned areas, the standard points out risks that an organisation should manage in a suitable manner so as to accomplish the main objective: ensuring the availability and usability of the information of people or units when necessary, and restricting the availability of information to people and units that should not have access to it. Bureau Veritas Eesti OÜ, the company that handled the certification of Wiedemanni Translation Bureau states on its website that ISO 27001 provides guidelines in relation to the establishment and operation of information security systems as well as their maintenance and change management.
By its nature, Wiedemanni is an undertaking that handles information. Every year, we translate more than 50,000 pages of text for nearly 350 clients from approximately 20 countries. Clients order translations from Wiedemanni in digital formats as well as on paper. Since our volumes of work are constantly growing along with our in-house team, while the information society around us is reaching new stages of development, we recognised the need to take a closer look at how Wiedemanni Translation Bureau handles the transmission, management and storage of information.
Wiedemanni’s objective is to implement sufficient security measures within the context of the most likely threats in order to prevent damage to its information assets and reputation, as well as ensure the uninterrupted operation of the company. We aim to be a reliable and stress-free partner for our clients.
In order to achieve this goal, the information security policy instituted by Wiedemanni Translation Bureau stipulates that any interruption of work will not last more than two hours (four hours maximum). As another measure, we listed our information assets and assigned an owner and a security class to each asset. In Wiedemanni Translation Bureau, all information is divided into two security classes: confidential and strictly confidential. The management of and procedures related to security incidents have been taken to a new level. As of now, all of our IT processes are subject to constant monitoring and improvement.
According to the head of Wiedemanni Translation Bureau, one of the most important results of the introduction of the ISO standard has definitely been the increase of information security awareness among the company’s employees and their acquisition of new practices as members of the information society. Furthermore, the introduction of the ISO standard resulted in an upgrading of the company’s technological base.
It is a strategic aim of Wiedemanni Translation Bureau to surpass the expectations of our clients, not just to meet the basic requirements.
The process of introducing an information security management system corresponding to the requirements of ISO 27001:2005 took Wiedemanni almost a year and a half to complete, and it was supported by Enterprise Estonia using funds from the European Social Fund.