The Information Security Management System (ISMS) of the Force's Computer Forensics Laboratory passed the re-certification audit of ISO/IEC 27001:2013 in January, through the efforts of the Digital Forensics Section of the Cyber Security and Technology Crime Bureau (CSTCB). This demonstrated the Force's commitment to safeguarding information security and strengthening the protection of digital evidence.

The ISMS preserves the confidentiality, integrity and availability of information. ISO/IEC 27001:2013 is an auditable international standard that specifies the requirements for establishing, implementing, maintaining and continually improving an ISMS of an organisation with the adoption of a "Plan-Do-Check-Act" model. The scope of the certification covers the management of information security by the Computer Forensics Laboratory, as well as data acquisition and analysis performed by forensics examiners.

Assistant Commissioner (Crime) Ho Yuen-ha received the ISO certificate from Ms Miranda Kwan, Director of Certification and Business Enhancement in SGS Hong Kong Limited in a presentation ceremony on February 21. The certification fully recognises CSTCB's professionalism in processing digital evidence.