Review and strengthen cybersecurity posture for a Financial Institution before new project deployment
Customer challenges
As a must do step before a new large IT Infrastructure project, the customer, a Financial Institution, wanted to review and strengthen its cyber security position. This project required to conduct an assessment covering people, process and technology dimensions of the customer’s current cyber security position and define a personalized cybersecurity target state as well as an actionable plan for improvement and remediation to reach this target.
What we offer
Cyber threat landscape: A preliminary step of this project consisted in defining the cyber threat landscape specific to the client (what is the Internet exposure, what are the sensitive digital assets, who might attack and tactics they might use, etc.) as well as the organisational risk appetite
We defined a target state tailored to the organisation cyber threat landscape and market leading practices, notably based on Information Security and results of global and local benchmarks. This target state consisted in a detailed cyber security framework identifying required cyber security capabilities
We assisted the organisation in measuring its current cyber security maturity (three levels: People, Processes & Technology) through technical assessments and review of organization and processes. Then, we performed a detailed gap analysis between desired “Target State” and “Current State”
We provided the organisation with a sequenced, structured, clear, and actionable set of correctives actions;
We provided a strategic roadmap for improvement where corrective actions were instantiated into detailed and prioritized security projects (including cost benefit-analysis)
The Results
Through the outcome of this project, the organisation gained a clear view of its Cyber security posture and was provided with an actionable roadmap to improve this posture. This project supported the transition to an executive-led cyber risk program that balances requirements to be secure, vigilant and resilient in line with the risk appetite of the customer.
More Case Studies