Information Assurance Case Studies

commissum has worked with businesses and government agencies of all sizes in a variety of highly demanding circumstances.

commissum has consistently demonstrated an ability to deliver expert, independent assurance services with characteristic flexibility and high levels of quality.

This page provides access to selected case studies that illustrate the type of work that commissum is typically engaged to deliver. If you would like to know more about the case studies described here, to find out more about commissum's information security expertise, range of services or to speak to a consultant today Contact us or please call 0845 108 2066.

Information Assurance & Security Projects

Case Study 1 - Financial Services - Online Banking Project Assurance

commissum provided a range of specialist independent assurance services to this project; meeting tight business critical milestones with characteristic flexibility.

Case Study 2 - Government - Data Handling, BCP & ISO27000 consultancy

commissum provided Data Handling, BCP and ISO27000 consultancy to ensure that this government agency was able to meet mandatory data handling requirements.

Case Study 3 - Oil & Gas Industry - Asset Tracking System Project Assurance

commissum worked closely with multiple stakeholders to ensure the final security of this complex flagship collaborative project to provide a web based asset tracking system on a global basis.

Case Study 4 - Professional Services Institute - Strategic Security Review

commissum provided a strategic review of the institute’s IT strategy assessed the proposed adoption of server virtualisation & policy and procedure framework.

Case Study 5 - Government Agency - Business Continuity Exercise

commissum consultants worked closely with the agency's business continuity team to devise, plan and deliver an innovative and believable exercise scenario to test both the business continuity processes, and the senior executive incident management team (Gold Team).

Case Study 6 - Government Blue Light Agency - CLAS Accreditation Services

commissum provided experienced CLAS consultancy and supporting technical services to assist this government agency in attaining accreditation.

Case Study 7 - National Engineering Group - Implementing a Corporate Wide Information Security Programme

commissum managed the implementation of a phased programme that addressed short term critical security issues, implemented medium term organisational and technology “fixes”, and established a long term roadmap for ISO27001 compliance.

Case Study 8 - Application Service Provider - Investor Due Diligence

commissum, acting on behalf of a syndicate of investors that included two global banks, was engaged to undertake an Information Security audit as part of the technical due diligence of a potential target for significant investment. A satisfactory outcome was a mandated prerequisite to securing the additional funding.

Case Study 9 - Global Legal Firm - Annual Test Programme & Security Partnership

Initially providing testing services for a major upgrade to the firm’s network infrastructure; commissum has over the years provided a range of security services as the firm’s trusted long term security partner.

Case Study 10 - Investment Bank - Application Development Security Training

commissum assisted the bank with their initiative to reduce security vulnerabilities early in the software development lifecycle with a first step training module to establish a common level of awareness of application security issues and how to address them.

Case Study 11 - Global Manufacturing - ISO27001/27002 Gap Analysis & Active Directory Review

commissum was engaged to assist this global manufacturing company with initiating a major security improvement programme; initially conducting an ISO27001/27002 Gap Analysis and a detailed Active Directory review.

• Case Study 1 - Online Banking Project Assurance
• Case Study 2 - Government Data Handling, BCP & ISO27000 consultancy
• Case Study 3 - Oil & Gas Industry - Asset Tracking System Project Assurance
• Case Study 4 - Professional Institute - Strategic Security Review
• Case Study 5 - Government Agency - Business Continuity Exercise
• Case Study 6 - Government Agency - CLAS Services for Accreditation
• Case Study 7 - National Engineering Group - Security Programme
• Case Study 8 - Application Service Provider - Investor Due Diligence
• Case Study 9 – Global Legal Firm - Annual Test Programme & Security Partnership
• Case Study 10 - Investment Bank - Secure Application Development Training
• Case Study 11 - Manufacturing Company - Active Directory Review & ISO27001/27002 Gap Analysis