Information Security Management Application Implementation

Customer

One of the largest IT and R&D services companies in Europe. It provides design and development services for embedded systems, products and components to customers worldwide. The focus is on telecommunication for mobile, access and switching applications, automotive solutions for infotainment, safety and comfort, as well as on dedicated areas in the automation and medical industry.

Challenge

The Customer had strong security requirements from clients’ side. It needed to develop from scratch a full-scale Information Security Management System, including the development of security policies, implementation of security measures and controls, training employees and passing a complex ISO 27001 certification audit.

Solution

The Customer organized an internal ISMS implementation team and involved an external ScienceSoft information security expert. Under the guidance of the information security leader, the team implemented all required controls in accordance with ISO 27001 requirements. The implemented ISMS was successfully certified by the international certification body Bureau Veritas.

In addition, a solid automated security framework was developed, which was later offered to clients as a separate product.

Results

ScienceSoft, in cooperation with the Customer’s security team, built and implemented an Information Security Management System in accordance with ISO 27001. ISMS ensures a comprehensive approach to information security in terms of confidentiality, integrity and availability, as well as allows the Customer to stand out from competitors.

Technologies and Tools

SharePoint Online, SharePoint Framework (SPFx), Microsoft Power Automate, Microsoft Power Apps, Microsoft Forms.