Once again, OChK has successfully passed a surveillance audit, confirming the company’s compliance with the requirements of four ISO international standards in information security and business continuity management. Moreover, the scope of the ISO 27001:2013 certification has been extended to include Security Operations Center (SOC) security monitoring services in the public cloud.
The growing digitalization of business, coupled with the increasing risk of cybercrime, is driving market demand for expert assistance in analyzing and responding to potential incidents. This led OChK to seek to expand the scope of its ISO 27001:2013 certification to include SOC—security monitoring services at its subsequent renewal. The organization achieved its goal in May 2024, as confirmed by an audit conducted by BSI, an independent accredited certification body. The audit also confirmed OChK’s ISO 22301:2019, ISO 27017:2015, and ISO 27018:2019 certifications.
- Year by year, the SOC service gains momentum in OChK’s service portfolio. Previously, most organizations opted for security monitoring implementation as part of their effort to put the best cybersecurity practices in place. However, this is becoming a market standard now. An important reason behind the implementation of this class of security measures is not only a significant increase in the number of cyberattacks but also new emerging regulatory requirements - explained Robert Przychodzień, Head of Cybersecurity at OChK.
These new regulations include NIS2 and DORA, which require organizations in various sectors to implement processes to monitor the security of IT system operations and ensure mechanisms to quickly detect abnormal activities. Implementing IT environment monitoring services performed by the SOC is one of the key ways to meet these requirements.
OChK supports companies in building their cyber resilience
One of OChK’s key goals is to provide top-quality services to companies and public institutions and to ensure the security of their data. The company prides itself on its numerous successful implementations of SOC services in the market (e.g., for PFR Operacje and PKO Faktoring), and the extension of ISO certification to include security monitoring services proves that it not only has the right procedures, processes and competencies but also that OChK’s cybersecurity team is able to apply them in day-to-day operations.
