Context & objectives
A subsidiary of the FIDUCIAL group, FIDUCIAL Cloud is a 100% French network operator and cloud operator that carries out all its hosting activities and services from France. The company wanted to have its activities recognised through ISO 27001 certification and to obtain approval from the Ministry for Health and CNIL to host personal health data.
To gain certification, FIDUCIAL Cloud must implement an information security management system and specific regulations for storing information in the cloud.
Solutions & methods
Netsystem exploited its 360° IT security expertise to meet the demands of FIDUCIAL Cloud, based on a flash security audit leading to a compliance roadmap for obtaining ISO 27001 certification. Supplemented by risk analysis and gap analysis to attain the ISO 27001 target, the initiative led to definition and deployment of the ISMS project.
Netsystem subsequently provided the company with certification support by proposing an internal review and mock audit prior to the official certification audit.
FIDUCIAL Cloud was awarded ISO 27001 certification by Bureau VERITAS, thereby demonstrating the availability, integrity and confidentiality of the retained data.
Key success factors:
- Very high technical level
- Applied theoretical understanding
- Flexible approach