UTI Grup
The ISO 37001 certification process has been a starting point to drive organizational change and redefine trust within the company, as well as a good opportunity to provide extensive anti-bribery training to employees.
Setting the goal to achieve ISO 37001 certification has been the trigger to implement a program meant to raise awareness and increase preventive measures. Since its beginning in 2015, this program has intensified each year and will continue indefinitely.
This certification acknowledges our model of responsible business conduct, based on full compliance with the rules and on zero-tolerance approach towards bribery. It also proves that UTI’s compliance program is mature and effective in preventing and detecting bribery-related misconduct and has the means to routinely assess the effectiveness of the anti-bribery regulations and continually improve them over time.
About UTI
UTI is a multi-services group of companies, driven by a permanent state of innovation, ambitious approaches, and a flair for entrepreneurship that continually reinvents to seize market opportunities.
UTI brings together diversified capabilities reunited in 8 companies, offering cutting-edge technology. It combines the expertise of over 1,300 employees, as well as strategic partnerships with world renowned partners being uniquely well positioned to capture further growth. The companies deliver diversified services and products such as: physical, information and IT security, intelligent transport solutions (ITS), fare collection solutions, e-Government information systems, automation and facility management services that are uniquely customized to perfectly address customers’ needs.
UTI has an outstanding reputation for the quality and reliability of the integrated solutions and services it delivers, the innovation it incorporates in its solutions, and the technological excellence, setting industry’s best practices.
Why did you choose to get certified against ISO 37001?
The company’s commitment to integrity and ethical business practices have always been the grounds for UTI’s success. Our core values – Integrity, Trust, Responsibility and Excellence – are fundamental to who we are and what we do, and we have always conducted our activity in compliance with ethical principles and in observance of all national and international laws.
However, in October 2015, even though none of UTI’s companies was charged with any criminal action, the company’s trustworthiness came under scrutiny and its integrity was called into question. The company took prompt steps to start an extended compliance and business conduct audit, in order to identify the main risk factors and schemes, to improve the internal procedures and related compliance control policies, and to efficiently manage all of the above.
Consequently, the Compliance Department (with money laundry prevention attributes as well) was created. The Compliance and Ethics hotline was established and made available both to the employees and to external partners and clients. The Code of Business Conduct and Ethics, and the internal regulations were analyzed and modified to provide stronger and more efficient anti-bribery provisions which would prevent events that could affect the company’s reputation and business practices – this also included the compulsory approval of the Compliance Department.
As a result, the bribery and corruption prevention system has been integrated within the processes of the company which has complemented the ethics and compliance policy, the business conduct code, the internal business ethics-related regulations, the corruption prevention, and fair competition practices that the company had already implemented.
In 2018, 4 of UTI’s companies: UTI Grup, certSIGN, Trident Servicii si Mentenanta (formerly UTI Servicii Portuare), and UTI Facility Management, went through a comprehensive audit that focused on the adequacy of the bribery and corruption prevention system that UTI implemented in conformity with the ISO 37001 standard, and obtained the ISO 37001 certification for their anti-bribery management system. Since 2018, the companies have undergone annual surveillance audits and are about to be audited for the certification renewal in 2021. Moreover, in 2021, TIU Investments and Management – another UTI company – is getting audited to get the ISO 37001 certification.
What are the main benefits of your company after implementation and certification against ISO 37001?
- Evidence of due diligence in case of legal inquiries proving the UTI has taken preventive and proactive measures to avoid any occurrence of non-ethical behavior.
- Stakeholder assurance that UTI is actively observing internationally recognized standards to prevent bribery and corruption.
- Protection of the organization, its assets, shareholders, and representatives from the effects of corruption.
- Cost reduction by implementing effective internal processes that regularly monitor key activities, control risks and costs related to bribery.
- Competitive advantages and protection of UTI’s reputation in relation to its clients and partners.
- Positive effect on the company’s culture – the certification enables a culture of integrity and transparency. It also ensures the protection of whistleblowers, making it more likely that issues are detected before any damage has occurred.
Your auditing experience with MSECB
MSECB has been our certification audit provider since July 2018. Initial audit against ISO 37001 Anti-Bribery Management System was performed in our Bucharest sites. Our companies CERTSIGN S.A., UTI GRUP S.A., UTI FACILITY MANAGEMENT S.A., and TRIDENT SERVICII SI MENTENANTA S.A. were subject to annual professional and in-depth audits.
MSECB staff proved a professional, competent, and concise approach when it comes to auditing standard’s requirements and delivering customer service.
In addition to the knowledge and understanding we gained from ISO 37001, the audit and certification had a tremendous impact on the public perception of our well-established ethics system. We find ISO 37001 certification to be a very efficient tool in organizing the anti-bribery management system.
We are happy and grateful to be certified against ISO 37001 and we highly encourage other organizations to taste the feeling of premium services that MSECB offers.
Other Testimonials
“EBC has an unwavering commitment to delivering quality to the Egyptian community and all stakeholders. Our goal was to implement and certify with ISO 9001, ISO 22301, and ISO/IEC 27001 standards as Integrated Management Systems. This was applied to assure our readiness, identify potential gaps, and serve as a continuous improvement program. The program had the tone at the top and was embedded within EBC culture.”
“InvesCore Financial Institution views the achievement of ISO 9001 and ISO/IEC 27001 certifications as a testament to our management’s and employees’ dedication to fostering a culture of continual improvement and robust risk management. We are proud to have successfully completed the three-year auditing process, and our experience with MSECB was truly pleasant.”
“Our experience with MSECB for the ISO 22301:2019 certification is exceptional, marked by their high professionalism and expertise. The auditor conducted a meticulous and thorough audit, offering detailed assessments and valuable insights into best practices for business continuity management. The auditor’s collaborative approach facilitated open communication and effective issue resolution, while their clear, constructive feedback provided an opportunity for improvement aligning with ISO/ 22301:20219 standard.
Beyond the standard audit, the auditor’s value-added insights specific to the security industry further strengthened our resilience. Throughout the process, MSECB’s supportive customer service was outstanding; consistently responsive, approachable, and helpful.”
“One of Paystack’s core values is “Insist on high standards” which reminds us that merchants trust us with their livelihoods. As such, we give this responsibility our absolute best. At Paystack, we seek to be the reliable industry experts that our merchants and partners can count on, especially in areas critical to their operations like privacy and security. By adhering to the rigorous ISO/IEC 27001 and ISO/IEC 27701 standards, we are not only able to maintain top-tier security and privacy practices but also champion these standards throughout the fintech ecosystem.”
“We had a positive experience with MSECB. Our concerns were addressed in a friendly and timely manner, showcasing MSECB’s commitment to assisting organizations in achieving robust information security management systems.”
“The audit and certification experience with MSECB was highly positive, as we learned more about the industry standards.
Throughout the certification process, MSECB showcased a commitment to quality which was greatly valued.
Overall, MSECB demonstrated a strong dedication to customers’ needs. The entire MSECB team maintains a high level of standards of professionalism.”
“Exclusive Capital’s journey through the ISO/IEC 27001 certification process with MSECB was characterized by a meticulous verification aligning with global standards.
Our experience with MSECB was exceptionally positive and professional. The auditing process stood out for its thoroughness, organization, and attention to detail. MSECB’s customer service was commendable, featuring responsive and knowledgeable staff facilitating a seamless certification process.
Our overall collaboration with MSECB reflected professionalism, expertise, and a shared commitment to upholding the highest standards in information security.
We value this partnership and eagerly anticipate continued collaboration.”
“Our audit and certification experience with MSECB was exceptional. The auditing process was thorough yet collaborative, with MSECB demonstrating expertise and professionalism. Their customer service was commendable, providing clear guidance and prompt responses. The partnership with MSECB has facilitated a seamless certification journey and reinforced our confidence in their commitment to excellence and the high standards upheld by their team.”
“ISO/IEC 27001 is the crucial information security certification that has enabled us to improve processes within the company to become even better and more secure for our current and future clients.”
“The certificate reflects the robust Business Continuity Management System in place that is implemented to handle any potential business disruptions, minimize downtime, shorten recovery time, and demonstrate CBE’s organizational resilience to efficiently maintain the functionality of the Central Bank of Egypt and its prominence locally and internationally.”
“At Interswitch, ISO 22301 certification represents our unwavering commitment to resilience, dedication to business continuity, and profound understanding of the significance of preparing for the unexpected.
ISO 22301 certification is a proactive approach to risk management that demonstrates to stakeholders and customers that we at the Switch prioritize the continuity of our operations, even in the face of adversity. It is not just a mark of achievement; it shows the Switch’s ability to weather storms and emerge stronger on the
other side.”
“By achieving ISO/IEC 27001 certification, Vodafone Egypt’s cloud services demonstrate an unwavering commitment to protecting customer data and ensuring the highest standards for information security. This certification is a testament to the dedication to providing secure and reliable cloud services, giving customers peace of mind and a competitive advantage in the market.”
“GET Group, a leading provider of identity management and security solutions has shown its commitment to quality and information security by being ISO 9001 and ISO/IEC 27001 certified. These certifications enhance trust and reliability amongst our customers and partners, enhancing our day-to-day operation and protecting our assets.”
Mrs. Maysoon Jamal – Chief Executive Officer at GET Group Holdings
“Achieving the ISO 22301 certification puts Ecobank amongst an elite group of organizations that are committed to business resilience and continuity in the delivery of products and services to their customers, even in the event of a disruption. In addition, the bank’s management have also inculcated a culture of business continuity in all staff, such that, in any disruptive event, everyone is fully aware of their roles.”
“The ISO/IEC 27001 certification is a crucial step to continually improve our information security and protect the data that our customers entrust us with.”
“MSECB immediately responded to any request and was instantly available to offer their help and support. They have a good understanding of customers’ needs and excellent client orientation.”
“DAZN had an excellent experience with MSECB. The auditors were well prepared, with a high degree of knowledge of the ISO/IEC 27001 standard.”
“The high professionalism of the auditors and back-office employees, prompt assistance and excellent quality made our choice very simple. We are sure that when we chose MSECB we made the right choice.”
“The experience was rigorous and educating. The customer service is top notch.”
“Auditing by MSECB was a fantastic experience. The Auditor was very professional throughout the audit process and we are glad we chose MSECB as our certification body.”
“Our journey to ISO/IEC 27001 certification was surprisingly straightforward. Our auditors explained the process in advance, and we were able to meet the proposed schedule, which was much appreciated.”
“We had a great audit and are excited that we passed the assessment. The auditor was well experienced and MSECB
provided required support.”
“The achievement of ISO 9001, ISO 14001, and ISO 45001 certifications manifest the commitment of our management and all EPN employees toward fostering a culture of continual improvement. – Dessy Arfianti, Department Head of HSSE & QM”
“Protecting our customers and enhancing quality management has always been a priority for BIOS Middle East. Achieving ISO 9001, ISO/IEC 27001, ISO/IEC 27017, and ISO/IEC 27018 certifications provide independent assurance of our commitment to leverage the latest best practices and security controls around all our services.”
“It is important for an organization to get ISO 9001:2015 certification, to achieve efficiency in service delivery, and attain maximum customer satisfaction.”
“The ISO 9001:2015, ISO 45001:2018, and ISO 14001:2015 certifications are mostly a pre-requisite to participate in most major International EPC Tenders of large multi-national & government projects and very crucial in winning large clients. Following the decision to scale the business outside of Ghana, it was imperative that we get ISO certified.
The process has ultimately allowed us to boost the quality of our work/services, increase the satisfaction of our customers, and enhance the productivity and operational efficiency with the hope that it will set us apart from our competition.”
“By achieving ISO/IEC 27001 Tr3dent demonstrates commitment to provide our customers and partners with a level of information security conformity that meets the highest industry standards and secures our clients’ data accordingly.”
“Vision 2030 has been inspiring us to achieve an unprecedented step in the field of cybersecurity in line with the Kingdom’s aspirations to be one of the best cybersecurity leaders in the world.
Following our successful certification against ISO/IEC 27001:2013 and ISO 22301:2019, we consider ISO/IEC 27032:2012 certification as an additional step towards the achievement of our strategic goal to integrate the highest standards of cybersecurity and information security procedures.”
“Not only is ISO 13485 Certification a validation of the high standards that Sisu Global follows in our quality procedures to ensure a safe product, but it has also been critical in our expansion. ISO 13485 is recognized as a global standard and being certified with this standard, has opened up new global markets for our novel autotransfusion device, Hemafuse.”
“For us at Viseven, the ISO/IEC 27001 certification is a staple of corporate responsibility: it confirms our compliance with our customers’ information security requirements, as well as those of applicable legislation, all of which is engrained in our corporate DNA as part of the digital culture as a tech company.”
“The ISO 37001 certification process has been a starting point to drive organizational change and redefine trust within the company, as well as a good opportunity to provide extensive anti-bribery training to employees.”
“By achieving ISO 9001 and ISO/IEC 27001 certifications, ELEKS has shown its commitment to quality and information security, ensuring that all the necessary controls are in place, and that its people, the technology, and their processes have met the requirements of these standards. The certifications assure clients and partners that ELEKS prioritizes robust quality, security and reliability in its delivery and management processes.”
“Being a leading pure cyber security company, we had to comply with high standards of information security and quality to strengthen our corporate responsibility and sustainability. The ISO/IEC 27001 and ISO 9001 certifications allowed us to raise our trustworthiness and reliability vis a vis our stakeholders as a cyber security service provider of reference in the region.”
“For Alter Domus, achieving ISO/IEC 27001 and ISO 22301 certification demonstrates to our customers and all interested parties that our information security and business continuity management systems operate to the highest industry standards.”
“Achieving ISO/IEC 27001:2013 certification further strengthens the deep trust we have built with our customers and partners, as well as further protecting our brand and enhancing our operations.”
“In one hand, MSECB customer service team proved their values by being really professional and keen on their approach. They were always ready and willing to support us with any clarity related to MSECB services. On the other hand, MSECB auditor/s showed a great maturity and competence at handling the entire certification audit process independently end-to-end. We highly recommend you to consider MSECB as your certification body so you can live a great experience”
“Certifications enable accountability by aligning technology, processes, and people to respond to imperatives regarding governance, risk, and compliance – or in other words, they demonstrate our trustworthiness through the lenses of an independent third party.”
