Siriraj Piyamaharajkarun Hospital (SiPH) has been receiving the renewal of Certifications of ISO/IEC 27001:2013 (for Information Security Management System), and ISO 27799:2008 (for Health Informatics – Information Security Management) from TÜV NORD Thailand for 6 consecutive years!
The ISO/IEC 27001 is the international standard, provides a set of standardized requirements for an Information Security Management System (ISMS). Using them enables organizations of any kind to manage the security of assets such as financial information, intellectual property, employee details, or information entrusted by third parties.
The ISO 27799:2008 specifies a set of detailed controls for managing health information security and provides health information security best practice guidelines. By implementing this International Standard, healthcare organizations and other custodians of health information will be able to ensure a minimum requisite level of security that is appropriate to their organization’s circumstances, and that will maintain the confidentiality, integrity, and availability of personal health information.