Sequretek helps a global Ratings, Research Risk and Policy Advisory firm in their ISMS objectives.


About Customer

The client is a global analytics company providing ratings, research, and risk and policy advisory services. Its majority shareholder is Standard & Poor's, a division of McGraw-Hill Financial, and provider of financial market intelligence.

Industry - Credit Rating



Challenge

Information is the most important asset for any organization that wishes to maintain a competitive edge over its rivals. An efficient management system to secure the organization's information becomes imperative and highly challenging.

To meet that end, Sequretek conducted the Internal Audit to validate the effectiveness of the client’s ISMS in achieving its security objectives. As in any large organization, there are multiple layers of hierarchy, making it challenging to determine gaps arising out of process and technology interdependencies creating vulnerabilities in the ISMS.


Solution

To help the organization in achieving its ISMS initiatives, Sequretek conducted a biannual audit of all the important processes and technologies. All audits were conducted keeping in mind the organizations policies and the requirements of the ISO27001:2013 Standard.

The findings were reported and a thorough root cause and corrective actions determined for any fault in the ISMS implemented. A date was decided to ensure timely closure of the exposed risk based on the formulated corrective action. All reports of the audits are maintained for future reference, to be used during internal/extenal audits.


Results

• Improved ability to meet customer expectations
• Enhanced ability to win large enterprise customers
• Strengthened management systems
• Embedded best practices
• Enhanced performance and reputation
• Sharper competitive edge
• Adherence to the most current and widely used international standar


Highlights

- Audit pertinent processes and technologies necessary for Information Security
- Highlight process gaps and help in creation of a robust Information Security Management System




Leave a Reply

Your email address will not be published.


Comment


Name

Email

Url