A fast growing media company with presence in Europe, US and Asia need to create security and business continuity plans in line with best practices from ISO 27001 and 22301.
Challenge
- No Business Continuity Management framework in place
- Lack of clear processes, roles and communication plans
Services Included
- Infrastructure Security penetration testing
- Business Continuity Assessment
- Advisory work on security and BCM improvements
- Solution & Delivery
- Implement a BCM framework levergaing best practices from ISO 27001 and 22301
- Local PC and Laptop Security, Domain Security ( user access administration (e.g. staff leaving), Use of password and other security policies at an Active Directory Domain level.)
- Public Security (Review of Public facing firewall rules and inbound connectivity.
- Basic Penetration testing and evidence of third party security penetration, physical access to building, clear desk policies), Local Network Security (Use of VLANs and Access Lists on the LAN), WAN Security (Review of connectivity methods between sites)
- Cyber Security (Looking at what, if any, Mail Gateways, IPS and Web Filtering are in use.)
- Data Security and compliance with GDPR
- Impact
- Delivered security audit and BCM framework in 3 weeks
- Standardised processes and communication channels
- Clarified roles and responsibilities of key staff during a crisis.
- Business up to date with latest best practices from ISO governing bodies