ICT Security Standards

Register to receive insights from CJC

Get notified of the latest news, insights, and upcoming industry events.

ICT Security - The Highest Priority for CJC

In today's digital age, cybersecurity is of utmost importance. Our highest priority is the IT security of our clients and CJC's internal systems. Customers demand that their third-party dependencies have equal or better standards than their own. CJC has a robust IT security policy to safeguard your data and technology infrastructure against potential breaches, human errors, and system malfunctions that can severely impact business operations.

Capabilities

ISO 27001

CJC is ISO 27001 certified, the globally recognised management system for data and information security. Our security commitment means CJC complies with the latest regulations and minimises client exposure to risk.

MORE DETAILS

OUR SECURITY COMMITMENT

The CJC information security policy, endorsed by the CJC Board of Directors, aligns with the ISO 27001 framework and certification. This policy mandates the security principles that apply to our people, process, and internal and external technology. The policy and supporting standards are reviewed and updated in response to evolving technical risks, regulatory changes, and client requirements.

Security is at the forefront of what CJC does. We take a zero-trust approach to security, covering internal organisational structures and cloud environments.

CJC's information security management system (ISMS) protects our applications, platforms and infrastructure, safeguarding client data. Data classifications are applied at CJC to ensure security protections are appropriate to the level of risk attached to the data, protecting and processing data on behalf of clients.

TRAINING

CJC provide detailed online training courses, through the KnowBe4 platform. All staff, either new or existing must complete the holistic IT Security training programs.

PROTECTING OUR CLIENTS

CJC understands the importance of data protection and is committed to ensuring physical and cloud data centres are managed to the highest standards. Our approach is critical for safeguarding data and ensuring reliability.

MORE DETAILS

DORA READY

CJC are committed to providing the best cyber and domain level security. In 2025, financial institutions will be regulated by DORA (The Digital Operational Resilience Act). CJC are a compliant and resilient 3rd party dependency, that our clients can trust.

PHYSICAL SECURITY

Our corporate security policy guidelines are based on industry best practices and comply with ISO 27001. CJC meets country or region-specific standards.

CJC’s policy requires facilities used to deliver a part of a service, whether managed by CJC or a third party, to be subject to comprehensive audits.

CJC’s InfoSec program (including infrastructure, technical controls, processes, policies, and certifications) is periodically reviewed and updated in line with technical risks, regulatory changes and clients’ needs for information security.

With regions/zones available globally, CJC can provide clients with the flexibility to deploy applications as required with interconnectivity between regions across multiple regions/zones.

SECURE CONNECTIVITY

Network connectivity is a crucial component of the services provided by CJC. Our connectivity solutions ensure client data is secure, private, and protected from cyber threats.

MORE DETAILS

SECURITY MEASURE HIGHLIGHTS

CJC takes IT security seriously and prioritises the protection of client data. Some of CJC's IT security highlights:

- Dedicated cybersecurity team.
- Zero-trust infrastructure.
- Multi-factor authentication.
- Strict firewall and network access controls.
- Network intrusion detection.
- Web-filtering appliances.
- Active directory and AD auditing.
- Windows file system auditing.
- BYOD management.
- Penetration testing.
- Continuous monitoring of cyber threats.
- Administration credential encryption.
- Network intrusion detection.
- Security change request controls.
- Private network access control.

CJC invests in security products and partnerships, such as Google Chronicle and SEP2.

Testimonials

“Understanding, controlling and allocating our costs are a vital part of our business. CJC CM are experts at utilizing the FITS inventory platform to deliver the clarity and detail that we require to have total transparency across all aspects of our IT spend and contract obligations. We have total confidence in the team and their ability to provide outstanding service and support our growth plans.”

— CEO at Financial Brokerage

“The changes that CJC Commercial Management has made to our processes to streamline, create efficiencies and controls, improve documentation and communication has meant that the service is better than it has ever been. We’ve built a fantastic working relationship which has improved the service by leaps and bounds.”

— VP Manager, Enterprise Market Data Finance at Financial Services Company

Featured Insights

Get In Touch

Get in touch with our experts to learn how we can help you optimise
your market data ecosystem!

Arrange a Meeting