ISO 27001 -3
Company: Construction and facilities management company
Employees: 900
Key drivers:
Establish and implement ISMS and achieve ISO 27001 certification
Challenges:
The nature of the business requires sharing, processing, and storing data which posed a significant risk to information security, with sensitive data being susceptible to accidental or deliberate compromise.
Here challenge of implementing ISO 27001 was not convincing leadership — as they recognised the importance of protecting data. The challenges were not having an information security leadership, a dedicated information security team, and the absence of an ISMS made it challenging to ensure consistency in its operational activities and management practices.
Result:
To ensure that the ISMS was aligned with best practices established in the ISO 27001 standard, CGI conducted a comprehensive review of client’ existing security policies and procedures, as well as interviews with key business stakeholders. This allowed CGI to understand the existing risk culture and set the tone of the ISMS documentation and policies.
Developed an ISMS framework, which served as a clear and unified set of agreed documents to manage the implementation of policies and procedures for ensuring the confidentiality, availability, and integrity of informational assets.
CGI created a framework aligned to the following ISO 27001-mandated baseline clauses which serve as the foundation of client’s ISMS.
Testimonial:
CYBERNETIC GI team really are experts in the field of cyber security. They are flexible in meeting our needs and listening to our challenges. I greatly appreciate Cybernetic GI cyber team and hands on support. They listened and responded to our needs and provided us with numerous options and solutions meeting cyber compliance required standards for our business and without straining our business budgets. I highly recommend Cybernetic GI to any business seeking cyber security services.