MicrosoftTeams-image-(18).jpg

Information Security Policy Statement

INFORMATION SECURITY POLICY STATEMENT

Marsoft Inc. is the world’s largest independent advisory group focusing solely on the maritime industry.

Our primary focus is providing expert, objective, and timely support for senior management in making investment, financing and chartering decisions.

Our application Flagship is a state-of-the-art shipping portfolio and risk management application widely used by leading banks, leasing companies, and shipowners.

Marsoft is strongly committed to the improvement and effective management of information security in the situation of the ever-evolving landscape of cybersecurity threats and customer's increasing needs and expectations. Inside in this context Marsoft implements an information security management system based on the ISO/IEC 27001: 2013 Standard.

This Information Security Policy supports the strategic aims of the company and describes management’s commitment to maintaining and improving the information security.

Marsoft’s strategic objectives are:

  • To supply innovative, safe and reliable software solutions.

  • To deliver trustworthy services based on demonstrably sound security technologies, with care about privacy and data security.

 

In pursuit of the strategic objectives, management is committed to:

  • Protect the confidentiality, integrity, and availability of corporate and customer information.

  • Provide governance and oversight during the processes of design and development of software to ensure that information security requirements are met.

  • Manage risks to an acceptable level through the design, implementation, and maintenance of appropriate security controls.

  • Plan and manage activities to guarantee service continuity and information security continuity; managing and reporting incidents, including security breaches.

  • Comply with legal, contractual requirements and industry best practices that apply to Marsoft's business activities.

  • Ensure that the expectations and requirements of all interested parties, in relation to Information Security, are met.

  • Ensure that the resources needed for the information security management system are available.

  • Raise awareness, provide knowledge and support to employees on information security management.

  • Analyze and measure the information security of all operational and support processes through suitable indicators to improve the effectiveness of the information security management system.

 

All personnel and contractors must always be aware of and take responsibility for the security aspects of the company’s business activities.

This policy statement is easily accessible to all staff and available on Marsoft’s SharePoint. The policy will be reviewed by the top management, and if necessary revised annually.

As the President of Marsoft I am committed to the continuous improvement of the Information Security system and culture throughout the business.

Arlie Sterling

President, Marsoft Inc.

24-May-2021