Chennai, Mar 16: Indian companies have built credibility among its global customers due to the adoption of the international standards in information security, according to a NASSCOM analysis on 'Information Security Environment in India'.
The current situation states that Indian companies have robust security practices when compared to those followed by western companies and primarily comply with ISO 27001 - a global standard that covers all domains of security. The analysis further revealed that the Indian companies sign Service Level Agreements (SLA), which would cover all relevant laws these companies wanted its offshore providers to comply with and actions that could be taken in case of breaches.
To ensure compliance with various laws in US and UK, Indian vendors follow security practices as specified by clients such as security awareness trainings, access control, data encryption and obfuscation, non-disclosure agreements, screening of employees and penetration testing.
NASSCOM has been working closely with the IT-BPO industry in India, to create a robust and secure information security culture and in association with other stakeholders like the Indian Government on the issue of creating a relevant regulatory environment.