Customers

Customers

Critical Infrastructure
Decisive and swift Essential Eight change management.

This is just one of many examples of our capabilities to swiftly deliver Essential Eight change management. When in July 2021 the Australian Cyber Security Centre (ACSC) introduced updated Essential Eight requirements, many organisations were exposed not having the required maturity levels.

Our critical infrastructure client required a fast response to meet the new requirements. Delivering within a tight timeframe minimised their exposure and the quality of our response delivered new ways for them to improve their business resilience.

Change management review and outcomes for new Essential Eight requirements:

  • Improvement plan for fixing the gaps in Veeam data backup and storage capabilities.
  • Control requirements from NIST, ISO 27991, ISO 22301 (BCM) and ISO 27031 (IRBC).
  • Recommendations for improvement across business impact assessments (BIA), business continuity plans (BCP), backup system security and backup/operational best practices.

Finance
Wealth management solution goes into the cloud for greater market alignment.

ISO 27001 certification was urgently needed to capitalise on a genuine competitive advantage. Everyday waiting was a day of lost revenue, leaving the door open for competitors.

Collaborating with large internal resources who implemented the Information Security Management System (ISMS), ISD Cyber provided on-the-job mentoring to the internal resources to help implement the core elements of their Information Security Management System (ISMS)

In addition to standing up the ISMS in terms of policies, procedures and records, the mentorship extended to providing the team confidence to continually maintain the ISMS over time, by setting up the framework, metrics and reporting mechanisms.

Overview of Information Security Management System (ISMS):

  • ISO 27001 certification
  • Successful Stage 2 audit
  • New cloud-based software solution launched
  • Knowledge transfer to internal teams
  • Training and development to create internal capabilities