Context & Objectives
A subsidiary of the FIDUCIAL group, FIDUCIAL Cloud is a 100% French network operator and cloud operator that carries out all its hosting activities and services from France. The company wanted to have its activities recognised through ISO 27001 certification and to obtain approval from the Ministry for Health and CNIL to host personal health data.
To gain certification, FIDUCIAL Cloud must implement an information security management system and specific regulations for storing information in the cloud.
Solutions & methods
Netsystem exploited its 360° IT security expertise to meet the demands of FIDUCIAL Cloud, based on a flash security audit leading to a compliance roadmap for obtaining ISO 27001 certification. Supplemented by risk analysis and gap analysis to attain the ISO 27001 target, the initiative led to definition and deployment of the ISMS project.
Netsystem subsequently provided the company with certification support by proposing an internal review and mock audit prior to the official certification audit.
FIDUCIAL Cloud was awarded ISO 27001 certification by Bureau VERITAS, thereby demonstrating the availability, integrity and confidentiality of the retained data.
Key success factors:
- Very high technical level
- Applied theoretical understanding
- Flexible approach
Testimony of Vincent Ferrara (Senior Consultant):
“The Bexley assignment was a real challenge: namely to conduct an audit in double quick time on behalf of an investment fund. And it is our experience that enabled us to respond to such tight deadlines, backed up by the professional quality of our consultants who were able to exploit their know-how to the full. The result is a set of recommendations accepted and implemented in full. “