Akelius Residential Property AB

cyber security

Akelius Technology AB has been discontinued, and staff have been transferred to the Technology Department at Akelius Residential Property AB, which now oversees Akelius’ cyber security.

ISO certification

Akelius is certified to the latest ISO 27001 standard, 27001:2022, by the certification body ISONIKE for the design and implementation of applications related to property management and IT Operations.

Find the certificate here.

ISO certification logo

certificate number 205
ISO/IEC 27001:2022

cyber security training

The cybersecurity programme offers online training, which is mandatory for all staff.

The monthly security awareness training is pushed via email through the learning management system to staff, and staff get periodic reminders to complete their training.

The system also pushes test phishing emails to staff, as part of internal anti-phishing education.
These campaigns help create a culture where staff are encouraged to report phishing attempts.

processes and security audits

Akelius’ Technology Department oversees cyber security.

monitoring and responding to data breaches and cyberattacks

Akelius uses the Microsoft Sentinel Security Incident Event Management, SIEM, solution to monitor security events and respond to incidents.

There are various automation playbooks to automatically respond to security events or isolate hosts, and various connectors that feed into the SIEM.

These connectors bring security events into the SIEM, where they are correlated and classified.

Current threat intelligence feeds into the SIEM from Microsoft Defender XDR, which is also in place.

The incident queues are monitored and reviewed.

There are Security Incident Runbooks for responding to security incidents.

They guide the various teams within the Technology Department in responding to security incidents.

They are updated with lessons learned following any incident response efforts, where there is room for process improvement.

regular external security audits or vulnerability assessments

Audits and assessments of the company’s systems, products and practices affecting user data

  • penetration testing exercise by an external vendor in 2024
  • a cloud security assessment for Akelius cloud infrastructure was completed in 2025 by Microsoft
  • an ISO 27001 certification audit by external auditors takes place every year
     

regular internal security audits, vulnerability assessments and penetration testing

An internal information security audit by a CISA certified internal auditor takes place every year.

reinforcement through policies

Akelius has various policies for staff to follow to strengthen cyber security.

 

contact juridische Algemene voorwaarden gegevensinstellingen
Nederlands