Information Security

Kennedy Scott operates in line with its Information Security Management System (ISMS) to ensure that information held by the company is secure and any risks of exposure are minimised.

The ISMS complies with the ISO 27001 standard for Information Security and Kennedy Scott is committed to the standard and its application in all aspects of delivery.

The Information Security Policy and Management System seek to ensure that:

Corporate, participant, staff and funding information will be protected
Sensitive information (however stored) will be protected against unauthorised access
The integrity of information will be maintained
Information will be made available to authorised partners and employees when required
Regulatory and legislative requirements will be met
Business continuity plans for mission critical activities will be produced, maintained and tested
Information security training will be made available to all staff
The Information Security Manager will assess potential risks and take preventative action to manage any potential risk
The company will comply with Standard ISO 27001 for information security
All breaches of information security, actual or suspected, will be reported to and investigated by Information Security Manager

Back to Values and Policies

"High quality training and support for participants to identify and overcome barriers
facilitating their skills development to enable them to achieve their employment and training goals"