ISMS Policy

 Masih Muhith Haque & Co. has defined their ISMS Policy as below:

The Management and employees of Masih Muhith Haque & Co. are committed to preserving the confidentiality, integrity, and availability of the physical and electronic information assets managed by the Firm.

As a means of fulfilling these commitments, Masih Muhith Haque & Co. is in the process of establishing and maintaining an Information Security Management System (ISMS) in line with the ISO/IEC 27001:2022 standard.

Masih Muhith Haque & Co. has adopted Information Security objectives and performance parameters that reflect the effectiveness of the ISMS. Masih Muhith Haque & Co. has also established these objectives and parameters are appropriate to the services provided based on the services the Firm offers to its clients. The security objectives and performance parameters of Masih Muhith Haque & Co. shall be monitored to demonstrate continual improvement of the ISMS. The control objectives are designed to be supported by specific, documented policies and procedures where appropriate.

All employees of Masih Muhith Haque & Co. as well as third-party service providers, are expected to comply with the ISMS. Any significant non-compliance after the adoption of the ISMS will be considered a breach, inviting suitable action.

The top management of Masih Muhith Haque & Co. is committed to driving compliance to the ISMS across the Firm. 

This policy will be reviewed at least annually.

 

                      

Masih Malik Chowdhury

Managing Partner