Information Security Management System and Quality Management System

  • Title page
    •  > About us
      •  > Information Security Management System and Quality Management System

Information Security Management System and Quality Management System

Information Security Management System

International standards for management systems provide a model that serves as a guide for the establishment and operation of the management system.

Information Security Management System according to ISO/IEC 27001: 2013 protects the confidentiality, integrity and availability of information by introducing a risk management process.

Establishing, maintaining and continuously improving the information security management system is a way for the Agency for Debt Management and Liquidity (hereinafter referred to as the "Agency" or "ARDAL") to ensure the continued protection of information and information systems, including third party information. At the same time, it represents the way in which the Agency seeks to deal with cyber threats and the requirements of legislation to ensure technical and organizational measures for the protection of personal data. 

Information security is achieved by implementing a set of measures according to standard ISO/IEC 27002: 2014, which are selected on the basis of a risk assessment. Examples of such measures include policy implementation, security organization build-up, assigning of responsibilities for information security, implementation of security processes and procedures, implementation of software and hardware security mechanisms, realization of penetration tests and performance of control activities aimed at compliance with defined security rules.

We consider the benefits of implementation of the Information Security Management System to be in particular:

- to demonstrate the credibility and assurance of all ARDAL parties concerned, that the information obtained is handled safety and responsibly,

- the information is handled in accordance with the defined security rules,

- identified risks are managed,

- information systems and information and communication technologies are monitored and their reliability is checked and evaluated,

- ARDAL employees who come into contact with information are trained and instructed,

- the system prevents access to information managed by ARDAL to unauthorized persons. 

Quality Management System

The introduction of a quality management system was a strategic decision for ARDAL.

The international standard EN ISO 9001: 2015 supports the introduction of a process approach that creates, implements and improves the effectiveness of the quality management system and the goal of ARDAL - to increase the satisfaction of investors, trading counterparties and cooperating institutions.

Integrated Management System

The ISO / IEC 27001: 2013 and EN ISO 9001: 2015 systems have the same basis and have been integrated into the ARDAL Integrated Management System.

The integrated management system is implemented in the area of state debt management, state liquidity management and the State Treasury system, state financial risk management and in performing financial market operations on behalf of the Slovak Republic.

We consider the benefits of an integrated management system to accurately identify processes within the organizational structure with a clear definition of the responsibilities of Agency employees, continuous and comprehensive risk assessment taking into account strategy and objectives, legal, regulatory and contractual requirements that the Agency and third parties must meet. We consider the greatest benefit of the Integrated Management System in the field of information security to prove and confirm the credibility, responsibility and reliability of the Debt and Liquidity Management Agency against third parties in handling the information obtained and processed. The implementation of a quality management system and the application of a process approach enables the achievement of effective performance of ARDAL processes and their continuous improvement. 

 

    iso_27001          iso_9001

Vyhľadávanie

Important

13. 09. 2021
The next auction will take place on Monday 20 September 2021. The bonds 233 S, 237 H and 242 A will be offered in this auction. More
02. 09. 2021
We have published the Monthly Report about the ARDAL´s activities, which includes summary of government securities as of 31 August 2021 and outlook for September 2021. More
03. 08. 2021
We have published the Monthly Report about the ARDAL´s activities, which includes summary of government securities as of 31 July 2021 and outlook for August 2021. More
01. 07. 2021
We have published the Monthly Report about the ARDAL´s activities, which includes summary of government securities as of 30 June 2021 and outlook for July 2021. More
25. 06. 2021
The next auction will take place on Monday 20 September 2021. More
14. 06. 2021
The next auction will take place on Monday 21 June 2021. The bonds 233 R, 234 R, 239 E and 240 E will be offered in this auction. More
Archive important information