About us

ISO/IEC Certification 27001:2013

Information Security Management System (SGSI)

In 2017, Deloitte Malta successfully completed a comprehensive external ISO 27001 audit carried out by The British Standards Institution (BSI Group).

The certification confirms that Deloitte Mata has integrated a strict Information Security Management System (ISMS) in its business processes, and that information security and client confidentiality are an integral part of the cornerstones of the firm’s activities. The ISMS is an approach that ensures a high standard of security that is maintained by Deloitte employees and supported by technology systems and processes across the organisation.

Malta continues to invest and retain its privileged status as an ISO/IEC 27001:2013 compliant organisation by being subjected to annual audits which are intended to capture the effectiveness of the ISMS and whether it is truly functioning as expected in core Information security domains such as:

  • Incident management
  • Process and controls monitoring/measurements
  • Applications of corrective and preventive actions
  • Risk management
  • Executive buy-in/support
  • Network security and operations
  • Human resources management
  • Physical security
  • Business resilience and continuity
  • Third parties and supplier management


For more information, please contact:

Richard Bonello CISM CISSP ISO 27001 Lead Auditor
Deloitte Central Mediterranean, Malta
Chief Information Security & Confidentiality Officer (MT CISO | MT CCO)
Email: rbonello@deloitte.com.mt
Mobile: +356 99999888


Did you find this useful?