Lanka ORIX Information Technology Services Ltd. (LOITS), a subsidiary of the LOLC Group, recertified against the ISO/IEC 27001:2005 certification for its Enterprise Data Centre. LOITS first achieved the ISO/IEC 27001:2005 certification in 2009, and became the first in the banking and financial service sector to have an ISO/IEC 27001:2005 certification. LOITS functions as the primary ICT solutions and services provider of the LOLC group of companies.

ISO/IEC 27001:2005 is a management system which provides the highest level of management control for information security. This standard has been set by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC). The United Kingdom Accreditation Services (UKAS) certification was also awarded to LOITS following a stringent audit by Bureau Veritas.

LOITS provides information technology, IT enabled services and develops software for various customers especially from the banking and financial services sector. LOITS is also a Microsoft Certified Partner who offers Microsoft based solutions and is currently a gold partner of Oracle Corporation of USA. LOITS obtained its specialisation status enabling the Company to distribute and implement Oracle applications to its customers.

“LOITS Fusion Suite of Solutions”, which is successfully deployed across the LOLC Group and other financial institutes, was the only award winning software at the ISACA Security Awards 2010 in the category of Application Security. In addition to its core products, LOITS also engages in providing services relating to ICT Strategy Consulting, Project Management, Information Security Consultancy and ERP Implementation.

“We have achieved this certification for our superior IT infrastructure and services. We have maintained the highest quality standards in all our services, and this certification gives a further validation to our efforts in adopting best practices in the IT industry. This achievement shows our commitment to standardization, assurance to quality, due diligence and risk mitigation whilst benchmarking against the world’s best”, said Conrad Dias, MD/CEO of Lanka ORIX Information Technology Services Ltd.

LOITS’ Head of Information Security & Compliance, Parakum Pathirana said: “Protection of data and digital assets is critical to any company. However, it continues to be more and more difficult with the proliferation of new and more complex technologies such as mobile computing, virtual machines, cloud computing and complex multi-tiered architectures, etc. Furthermore, there is an escalating pattern of threats to IT infrastructure, and these threats are expected to intensify and evolve. With all these uncertainties ISO/ IEC 27001:2005 accreditation gives assurance to all our stakeholders that we have taken reasonable steps to protect our critical information assets.”