LMG Security Compliance

LMGs’ compliance with internationally recognised standards and code of practice is evidence of our commitment to information security at every level of our organisation and that the LMG security program is in accordance with industry-leading best practices.

ISO/IEC 27001:2022

ISO/IEC 27001:2013 is a security management standard that specifies security management best practices and comprehensive security controls following best practice guidance. The basis of this certification is the development and implementation of a rigorous security program, which includes the development and implementation of an Information Security Management System (ISMS) which defines how LMG perpetually manages security in a holistic, comprehensive manner. 

This widely-recognized international security standard specifies that LMG do the following:

• We systematically evaluate our information security risks, taking into account the impact of threats and vulnerabilities.
• We design and implement a comprehensive suite of information security controls and other forms of risk management to address customer and architecture security risks.
• We have an overarching management process to ensure that the information security controls meet our needs on an ongoing basis.

LMG's ISO Certification can be found here →

 

SOC2 Type 1

SOC2 Type 1 is a description of the LMG controls environment and external audit of LMG controls that meet the AICPA Trust Services Security, Availability, Confidentiality, and Privacy Criteria. The report provides an independent assessment of LMGs’ control environment relevant to system security, availability, confidentiality, and privacy.