Information Security Management Application Implementation

Customer

One of the largest IT and R&D services company in Europe. It provides design and development services for embedded systems, products and components to customers world-wide. The focus is on telecommunication for mobile, access and switching applications, automotive solutions for infotainment, safety and comfort as well as on dedicated areas in the automation and medical industry.

Challenge

The Customer had a strong security requirements from clients’ side. It needed to develop from scratch a full-scale Information Security Management System including development of security policies, implementation of security measures and controls, training employees and passing complex ISO 27001 certification audit.

Solution

The Customer organized an internal ISMS implementation team and involved external ScienceSoft information security expert. Under guidance of the information security leader, the team implemented all required controls in accordance with ISO 27001 requirements. The implemented ISMS was successfully certified by international certification body Bureau Veritas.

In addition, a solid automated security framework was developed which afterwards was offered to clients as a separate product.

Results

ScienceSoft in cooperation with the Customer’s security team built and implemented Information Security Management System in accordance with ISO 27001. ISMS ensures comprehensive approach to information security in terms of confidentiality, integrity and availability as well as allows the Customer to stand out from competitors.

Technologies and Tools

SharePoint Online, SharePoint Framework (SPFx), Microsoft Power Automate, Microsoft Power Apps, Microsoft Forms.