Background

This pan-European betting business has been growing rapidly and has seen cybersecurity compliance requirements for each country getting tougher over time. To ease this process, the company decided to seek ISO 27001 certification. Our cybersecurity specialist team was selected to conduct an assessment and then support the project team in the business to be compliant with the certification standard.

Challenges

The main challenges were:

    • Short deadlines in a fast moving environment: the company doubled its size during the certification project and the certification was vital in its context. A team of 4 cybersecurity consultants supported the client very closely and mostly on site for eighteen months in several countries.
    • Shareholders and Compliance authority relationship: our engagement included high level discussions with senior management, shareholders of the company and exchanges with the compliance authority.
    • Training people to adopt the good posture during an audit: as part of the certification audit preparation, the team conducted internal audits and coached key resources for the purpose of the audit, from the management team to the technical staff.

Answers & key success factors

For this project, our cybersecurity specialists added value through:

    • Methodology – our unique AMT methodology (Attractiveness, Maturity and Threat) offers a valuable new perspective on cybersecurity in a rapidly evolving context.
    • Skillset – our consulting team combines an in-depth understanding of the business issues, threat evolution forecasts and protection technologies available.
    • Sector specific knowledge – our cybersecurity team has a comprehensive understanding of the security levels and strategies in major banks.