How Opticore gained ISO27001 Certification
Due to the ever-changing demands of the Networking industry, Opticore made it an objective to enhance our compliance and cyber security practices to facilitate further growth. We set about achieving international ISO certification for information security management (ISO 27001) in October 2019.
Mike Hord, Commercial Director of Opticore said: “Over the past three years we have grown rapidly as a business. We wanted to put the structures in place to enable us to get to the next level of growth. As an organisation that prides itself on our quality of service, ISO certification provides a stamp of excellence which opens doors to new clients. Our mission is connecting people and moving data across global corporate networks, so we need to ensure that we walk the walk and everything we do is done securely.”
Bridewell Consulting collaborated with Opticore to assist with the certification and implementation of the frameworks which involves setting objectives and establishes principles for action with regard to information security. Bridewell worked with Opticore to understand its requirements, what processes were already in place, and exactly what needed to be implemented from a framework point of view.
Opticore used and tested a tried five-phase methodology which started with scope design and planning, moved to risk assessment and remediation, and then brought in ISMS controls and risk mitigation. The project was rounded off with an evaluation and preparation stage, before certification was awarded in the final phase.
The pandemic forced the stage one and stage two audits to be online. Opticore was even able to accelerate the process at the start of the lockdown as it had more time to devote to the project, which was ultimately completed to schedule in September 2020.
Opticore is now competing at a level above or alongside its competitors when it comes to demonstrating its security credentials. We are now looking to constantly improve our security measures and will continue to engage with Bridewell as a partner to regularly assess its security capability, with the next goal being to achieve the UK official Cyber Essentials certification.
Hord added: “We wouldn’t hesitate to recommend Bridewell’s services. The whole project went very smoothly, and we came through the certification with flying colours. Our relationship with Bridewell has been tremendous and it really feels like part of our team now. They guided us gently through the process and always kept us on track. “Having a sounding board with its security expertise is invaluable, and I can’t speak of Bridewell highly enough.”