Gazprom International Receives a Certificate of Compliance for Information Security

On November 28, following the certification audit of the Information Security Management System (ISMS), Gazprom International received a certificate of compliance with the national standard of the Russian Federation GOST R ISO/IEC 27001–2021 Information Technology. Security Techniques. Requirements.

In a festive atmosphere, the certificate was presented to Sergey Tumanov, Managing Director of Gazprom International, by Dmitry Semibratov, Director of URS Russia.

Gazprom International recognizes the importance of ensuring a high level of compliance with modern information security requirements and accurate compliance with applicable law, and strives to create a secure business environment, emphasized Sergey Tumanov.

In order to protect information resources, Gazprom International has developed and implemented the ISMS. Based on a classic risk-oriented approach, the ISMS is a set of company processes and a system of interrelated internal regulatory documents for information security management. The ISMS project was implemented by the company's own competence center with no involvement of external consultants.


Background

Gazprom International is Gazprom’s upstream operator outside the Russian Federation. The Company operates in ten countries across three continents and is involved in nearly 20 projects of varying magnitude.

As part of continuous development of its own competencies, ensuring the continuity of the Company's business processes, strict compliance with the established legal and regulatory requirements in various jurisdictions, in November 2022 the Company conducted a full certification audit of the ISMS for compliance with the national standard of the Russian Federation GOST R ISO/IEC 27001–2021 Information Technology. Security Techniques. Information security management systems. Requirements. This standard is identical to the international standard ISO/IEC 27001:2013 Information technology — Security techniques — Information security management systems — Requirements, IDT), including amendments: Cor. 1:2014; Cor. 2:2015.

URS Russia is the only official representative office of the United Registrar of Systems in the Russian Federation and CIS countries. The company offers training, inspection, product and management certification services.