Information Security

Codel Software is an independent software development company whose core services include:

  • Software Development
  • Hosted Solutions
  • Application Support

In the provision of these services, Codel Software will interact with a variety of information assets, with various degrees of confidentiality. They will also be required to comply with statutory and regulatory legislation and other applicable requirements to which they subscribe (contractually and voluntary). The purpose of the Information Security Management System (ISMS) is to manage the information Assets providing assurance of its confidentiality, integrity and availability.

Information Security Objectives

Codel Software is committed to continually improving the ISMS and has established a number Information Security Fundamental Objectives:

To protect the organisation’s business information and any customer information within its custody or safekeeping by safeguarding its confidentiality, integrity and availability.
To establish safeguards to protect the organisation’s information resources from theft, abuse, misuse and any form of damage.
To establish responsibility and accountability for Information Security in the organisation.
To encourage management and staff to maintain an appropriate level of awareness, knowledge and skill to allow them to minimise the occurrence and severity of Information Security incidents.
To ensure that the organisation is able to continue its commercial activities in the event of significant Information Security incidents.
Secure Software Engineering Principals

To aid in designing secure information systems. Codel Software follows a set of engineering principles for system security. These principles provide a foundation upon which a more consistent and structured approach to the design, development, and implementation of IT security capabilities can be constructed. These principals are at the adhered to through out the software development process, including:

When developing and evaluating functional and technical requirements.
When designing, implementing, or modifying an information system.
During all phases of the system development life-cycle.
Share this :