NMC Managed Services (NMC), Inc. is a Managed Services Provider (MSP), specializing in providing global IT services and solutions. NMC is committed to protect its information assets by deploying information security controls that minimize the impact of any security incident.  

To establish, uphold, and continually enhance Information Security Management while providing a framework for defining security objectives and targets, NMC commits to:  

1. The Information Security Management System (ISMS) shall be established in accordance with the ISO 27001 baseline, ensuring full adherence to its principles. 
2. All applicable legal and contractual requirements are fulfilled. 
3. NMC shall uphold the highest standard for privacy protection and ensure the Confidentiality, Integrity and Availability (CIA) of information assets is ensured through systematic deployment of security controls. 
4. Business continuity plans are established, maintained, and tested. 
5. Risks to all corporate assets (tangible/intangible and human) are assessed and against all risks, appropriate controls are implemented, mitigation and contingency plans are defined. 
6. All corporate assets (tangible / intangible, and people) are preserved with a secure and safe environment. 
7. The work environment provided to NMC human resources, will be free from accidental and occupational hazards. 
8. All personnel are trained in information security practices, roles and responsibilities. 
9. All relevant data protection controls shall be applied throughout NMC. 
10. All personal information which is subject to regional laws shall be protected according to the applicable law and NMC security policies. 

This policy is reviewed annually or (when required) to ensure suitability, adequacy and effectiveness of ISMS and communicated to interested parties.