Regulation Landscape

With the introduction in the United Kingdom of the Companies Act 2006, the Data Protection Act, and the Freedom of Information Act, and similar legislation across Europe, there is considerable complexity in the demands being made of IT systems within companies.

For instance, the Data Protection Act requires companies to take all reasonable measures to guarantee the security of information they hold about their employees, customers and partners. However, the Freedom of Information Act allows access to information held by public authorities. As a result, companies are faced with the balancing act of ensuring data protection but allowing the right access dependent on the complex clauses in these regulations. This can be done either from within the company or by outsourcing the task. An increasing number of companies are taking the view that outsourcing provides the best solution.

Proven Policy

Furthermore, many organizations are now bound by legal or industry regulations. Common regulations include Sarbanes-Oxley, HIPAA, the Payment Card Industry's standards for online merchants, and the Critical Infrastructure Protection schemes for utility companies as defined by NERC. These regulations require organizations to put in place various procedural and documentation steps, along with an overall assessment of those steps and the associated infrastructure.

What Network Box Delivers:

Network Box staff have extensive experience of advising many customers who have to adhere to these regulations. This experience means that they have the expert knowledge to be a real benefit when customers are being certified.

• Easier Compliance: Network Box's services provide many requirements for our customers. We provide security advice to ensure the integrity of our customers' network. We provide offsite storage of customers' configuration and a number of high availablity options. Monitoring ensures that customers' systems are working within acceptable parameters and pro-active updates ensure all customers' systems are current.
• Improved Security: Network Box provides improved security as our trained and experienced staff can advise as to the best solution for our customers. This results in improved fault tolerance and hence stronger workflows. With properly configured and designed systems there are fewer vulnerabilities which reduces exposure to liability.
• Greater Intelligence: Network Box personnel build a relationship with our customers' teams. This gives them an understanding of the infrastructure and of the company's specific requirements, policies and procedures. It means that advice is better targeted and implementations are a better fit to the individual requirements.

Network Box Compliance

Network Box knows that proper quality management improves the service it provides. ISO standards provide a comprehensive model for quality management systems that impose good, consistent procedures and so Network Box adheres to:

• ISO9001:2000 and ISO27001:

If you’d like to know more about security and compliance, read our white paper: Information Commissioner’s Office Powers: A Guide to Compliant Security in the UK.