24 March 2026 | Press Release Suva, Fiji – Outsource Fiji successfully facilitated the ISO 27001 Information Security Management System (ISMS) Certification Programme for its members, further reinforcing its commitment to global best practices in information security.
Members across the Outsource Fiji network participated in the specialised training, which focused on building a strong foundation in understanding, implementing, and maintaining internationally recognised information security standards. The programme enhanced organisational resilience, strengthened the protection of sensitive data, and aligned Fiji’s outsourcing sector with the expectations of global clients.
The training was facilitated by internationally experienced expert Mr Edward Polaczuk, CISO / Enterprise Data Solutions Lead, who brought extensive knowledge in information security systems and ISO standards. Participants gained practical insights into risk management, compliance requirements, and the implementation of robust security frameworks tailored to their organisational needs.
Outsource Fiji Executive Director Mr Josefa Wivou said initiatives such as the ISO 27001 programme demonstrated the organisation’s ongoing commitment to elevating industry standards.
“Information security is no longer optional—it is a fundamental requirement for doing business globally. Through this programme, we have empowered our members with the expertise needed to meet international benchmarks, protect client data, and build long-term trust,” he said.
Outsource Fiji continues to play a leading role in supporting the growth and sustainability of the outsourcing industry by promoting world-class standards, strengthening cybersecurity awareness, and investing in continuous professional development.
Mr Polaczuk said participants gained valuable knowledge that would strengthen their organisations’ approach to ICT security.
“The participants gave their full attention throughout the programme. It all came together on the final day with the mock internal audits, where the ‘lights went on’ as they understood how the lectures and practical exercises connected,” he said.
“I was particularly impressed by how participants from different organisations collaborated on practical exercises built around two fictitious BPO companies. It was clear that they truly understood the concepts.
“I hope that beyond ISO 27001, participants gained a deeper appreciation of why information security is critical for their organisations as they work towards becoming world-class. I believe they will take these learnings forward and become ISO 27001 champions within their organisations.”
Participant Mr Ronald Sharma from Datec Fiji described the programme as highly valuable and insightful.
“The ISO/IEC 27001 training programme clearly demonstrated how a structured and well-defined framework forms the foundation for effective data protection and information security certification,” he said.
“The training provided practical clarity on how organisations can achieve certification by building strong governance, risk management, and control processes from the ground up. This reinforces why ISO-certified organisations are able to demonstrate credibility and best practices in information security.”
Another participant, Ms Alisi Veikila from Greymouse Fiji, said the training would have a lasting impact on both her professional development and organisational practices.
“Implementing the ISO 27001 Information Security Management System has been a highly valuable and insightful experience. The training deepened my understanding of risk management, data protection, and the importance of structured, internationally recognised security practices,” she said.
“One of the key learnings was the emphasis on a risk-based approach, enabling us to proactively identify and address potential threats rather than reacting after incidents occur. It also highlighted the importance of continuous improvement and strong governance in maintaining effective information security controls.
“From an organisational perspective, this training enhances our credibility, resilience, and ability to safeguard sensitive information. It reinforces our commitment to excellence, compliance, and building trust with stakeholders in an increasingly digital landscape.”
