It is common conception that companies are caretakers of confidential information,trade secrets, valuable corporate assets,employee facilities,equipments and intellectual properties. Some of the companies also process personal details of their customer and employees, which are often subject to various laws regarding unauthorized disclosure, use and access. Most of the business process outsourcing companies develop, implement and maintain a customized set of security measures to protect or mitigate risk to these assets. The companies also take into account the value of the assets, confidential profile of the company which might be at risk and threat for any kind of misuse.
When a company outsources its function to a third party service provider, it should enter into a contract for various security measures. The service provider needs to maintain certain security standards that are restrictive as its own security standards. Most of the outsourced company need to comply with certain security measures which are as follows.
Customer security standards
Security standards of the service provider
Additional security measures to bridge the gap between the standards of the service provider and customer.
There are certain tools through which companies can implement security measures in their company. These are SAS 70,the payment card industry standard,data security standard,27001 standard . These are some of the standard tools which used by the companies from a security perspective.
SAS 70: It is standard developed by American Institute of Certified Public Accountants to audit the objectives of an outsourced company.
PCI: The PCI data security standard was developed by a major credit card company to protect the details of a credit card from fraudulent use. It has 12 mandatory requirements and more than 200 security measures like firewall configuration,anti-virus facilities,encryption,system password and system scanning.
ISO 27001: It is an international security management system developed by the international organization for standardization. ISO 27001 contains a list of 11 risk domains and over 100 controls. It also applies to entire business unit.
Nowadays, it is necessary that a company enters into a contract with the service provider to comply with the security measures. This is to ensure that there is no security breach on the part of the service provider. The SAS 70, PCI,and ISO standards are not just mere tools to ensure the security standards of the service provider. These tools can be used by the customer to evaluate the effectiveness of the security program provider by the outsourced company. These tools also play vital role for call centers in India to evaluate their security measures. These tools can also be used to assist the gap analysis process and provide some assurance to the companies that their service provider meets the minimum security standard measures.
Keywords
bpo services,global bpo services,bpo services in india,call center in india ,outbound call center,call center services india,offshore call center,call center services,outsource customer service, bpo services india,customer service outsourcing,telemarketing outsourcing,business process outsource,business process outsourcing india,bpo service,inbound customer service,call center outsourcing,
call center business,outsourcing consulting,
0 comments:
Post a Comment