Bocconi University has obtained ISO/IEC 27001 certification from CSQA , the international reference standard for cybersecurity and requires compliance with 93 controls relating to the technical and organizational measures adopted in this area.The recognition culminates a roadmap of several technology projects that have followed one another since 2021, both to raise robust technical defenses on the network and systems , and to increase risk awareness and self-defense capacity throughout the organization.
With this last step, the adoption of a solid and effective information security management system is confirmed and certified, which is now an essential factor to guarantee the confidentiality of student and stakeholder data within the GDPR, as well as to ensure the resilience of the organization with respect to increasingly frequent cyber attacks.
“In addition to its own data, the University also processes the data of students and many entities with which it collaborates. For us, it is essential to ensure the confidentiality, integrity and availability of this important information heritage and to be able to demonstrate to our interlocutors that we have seriously adopted all the best practices available in the field of cybersecurity, in a structured and systematic manner,” explains Riccardo Taranto, delegated councilor of Bocconi University . “ Achieving the certification is confirmation that we are going in the right direction and pushes us to continue on this path with even greater determination.”
"We are proud to have certified Bocconi University according to the ISO/IEC 27001 standard" – states Maria Chiara Ferrarese, CSQA General Director – "an international standard that attests to the adoption of an information security management system compliant with the highest cybersecurity requirements.
The certification recognizes the structured and rigorous path undertaken by the University to protect sensitive data and information, in line with the challenges posed by the new NIS2 regulation and with the best practices defined at a global level.
Bocconi represents excellence not only in the academic field, but now also in terms of digital resilience and the protection of information heritage”.
The recognition is part of a broader digital transformation strategy that for years has seen the University engaged in projects for the innovation of its processes and for the adoption of digital technologies in all its activities.
Bocconi is currently the only case in Italy and among the few universities in the world to have obtained this certification for the entire perimeter of its administrative processes.
Now that Bocconi has been included in the scope of the new NIS2 regulation, the ISO/IEC 27001 certification will also ensure compliance with the obligations arising from it.