ISO 27001 Consulting for Software Company
Please find under a summary covering project details and feedback. The innate facts are kept as they are, private information is amended.
Introductory information
A fast induction on the buyer’s organisation
I’m the VP and CISO for an enterprise software firm. We sell trading and risk treatment software and solutions, mainly to enterprise businesses in the energy and financial space.
Desired goal
What challenge were you trying to address with Digital Edge Ventures?
We began offering client-facing services on Azure, a open cloud. In approachion to our existing controls, we needed to obtain ISO-27001 certification to prove the platform’s security. Our team hired Digital Edge Ventures to help us in this effort.
Provided solution
What particular tasks were Digital Edge Ventures responsible for?
Digital Edge Ventures served in a consulting space. As an ISO-27001-certified structure, they made enhancement recommendations for our open cloud to better forthcoming audit results. The team then built the needed reporting method—an information security treatment method (ISMS)—into our SharePoint infrastructure to support the certification. Next, we collaborated to write updated program requirements required for this part of the program.
Was there a dedicated team?
We worked with 2 – 4 nation including Danielle (VP of Compliance, Digital Edge Ventures) and Michael (Founder and CEO, Digital Edge Ventures).
How did you come to work with Digital Edge Ventures?
We worked with another tech firm that subcontracted Digital Edge Ventures as an on-website associate.
How much have you invested with them?
We spent almost $50,000 on the project.
What is the terminal result of working with Digital Edge Ventures?
We began working on the certification in September 2017 and the project ended in June 2018. Currently, we have a livelihood contract with Digital Edge Ventures.
Results achieved
Are there any measureable or plum results?
The project was a achievement owing we got certified.
How did Digital Edge Ventures accomplish from a project treatment standpoint?
The team ran meetings—almost daily—and asked us insightful questions. We interacted via Webex owing in-person meetings proved uncalled. Danielle was apprehensionable and kept us on track by requesting careful and wide documentation from our side. Michael worked closely with our team during the third-party audit. He filled apprehension gaps whenever we struggled to address the auditors’ questions.
What is (from your point of view) the key factor to pay observation while intercourse with Digital Edge Ventures?
The team was apprehensionable and positive throughout the execution.
What aspects of their work would you like to get betterd?
No. The team did a good job and I don’t have any complaints.
Do you have any advice for forthcoming clients of theirs?
Clients have to give the team open approach to their environment and confide them. The more information Digital Edge Ventures has, the more achievementful they’ll be. Clients should recollect that Digital Edge Ventures is not an auditor, clients need to be open with the team almost issues that may arise during an audit to fix achievementful results.
Although the team was dedicated to our project, we could sometimes tell when they had other commitments to conjure. We worried their consultants might experience burnout. Though, the team fixd that there were sufficient resources to do the work. For sample, they participated during an audit meeting at one of our India locations, even though it was the middle of the night for them.
