Adjoint required ISO certification to comply with legislation, across multiple jurisdictions, and increase confidence in their brand. Due to the nature of their clients (fortune 500 and international companies), a widely recognised accreditation was required. The firm’s incorporation of next generation processing, such as distributed ledger technology (DLT), increased the complexity to achieve certification. Their global teams in the UK, Switzerland and USA, were undergoing a heavy scaling-up.
We were asked to customise and implement an ISO 27001 framework for global accreditation in IT security management.
Our approach:
- Capture delivery requirements
- Create relevant policies, procedures and a controls framework, for applicable IT functions
- Perform gap analysis and risk assessment
- Establish clear roles and responsibilities and deliver a formal training program
- Conduct internal assurance audit to identify incidents and data breaches
- Lead external certification process with BSI, through Stage 1 and 2 completion
- Provide agile delivery through to completion
Our results:
- Effective coverage of all ISMS mandatory requirements surrounding ISO 27001
- A new performance management system to track controls in company processes, structure and focal points
- Global delivery, with clear road-mapping structure
- Scaled offerings in open APIs and raised brand in the market
- Improved sales process due to meeting client ISO requirements