Information Security

ISO27001:2022 Information Security Management System (ISMS) Policy

RSM Puerto Rico has defined its ISMS Policy as below:

The Management and employees of RSM Puerto Rico are committed to preserving the confidentiality, integrity, and availability of the physical and electronic information assets managed by RSM Puerto Rico to preserve alignment with our goals and reduce the information-related risks to acceptable levels.

As a means of fulfilling these commitments, RSM Puerto Rico has established, maintained, and continuously improved an Information Security Management System (ISMS) in line with the ISO/IEC 27001:2022 standard.

RSM Puerto Rico has adopted Information Security objectives and performance parameters that reflect the effectiveness of the ISMS. RSM Puerto Rico has also established objectives and performance parameters appropriate to the services provided to its clients. The security objectives and performance parameters of RSM Puerto Rico shall be monitored to demonstrate continuous improvement of the ISMS. The control objectives are designed to be supported by specific and documented policies and procedures where appropriate.

All employees of RSM Puerto Rico, as well as third-party service providers, are expected to comply with the ISMS. Any significant non-compliance after adoption of the ISMS will be considered a breach, inviting suitable action.

The Cybersecurity and Information Security Oversight Committee and Senior Management of RSM Puerto Rico are committed to driving compliance to the ISMS to its employees as well as third-party service providers.

This policy will be reviewed at least annually.

Doris Barroso
Managing Partner

CONTACTING US

If you have any questions regarding our Privacy Notice or our ISO27001:2022 Information Security Management System (ISMS) please contact the RSM Puerto Rico Office at: 

Reparto Loyola
Calle San Roberto No. 1000
 San Juan, PR 00926
Tel 787.751.6164

You can also contact us by email at: [email protected]