ventio_logo

How vent.io got ISO 27001 certified in half the time

“Working with consulting firms could have taken 50-80% more time to setup an ISMS. With DataGuard, we felt cared for and supported.”

ventio_georgios_gkekas

Georgios Gkekas

Chief Technology Officer

vent.io

As the digital and innovation subsidiary of Deutsche Leasing AG, vent.io develops and tests digital business models, products, and services. vent.io focuses on the areas of Asset Finance and Asset-related Services. Its goal is to support the growth of companies and make the business models of clients future-proof in times of digitization. Two approaches are pursued: vent.io collaborates with and invests in B2B startups, and concurrently develops digital customer and partner interfaces, implementing solutions with artificial intelligence.

Location

Germany

Company size

Small & medium business

Industry

Tech

Product

Security

This digital and innovation subsidiary of Deutsche Leasing AG used DataGuard to halve the estimated time for ISO 27001 certification and boosted information security awareness across the whole organization. Here’s how.

Top 3 benefits for vent.io

  • They saved an estimated 50-80% time using DataGuard instead of consultants
    Document templates - Ready-to-use policy documents that vent.io could share with DataGuard experts, collaborate offline and save unnecessary meetings
  • They nailed their ISO audit first time and saved 100+ hours negotiating contracts following certification
    Audit preparation - Internal audit by DataGuard experts helped vent.io prepare for external audits and pass the ISO audit first time
  • They leveled up information security knowledge across the business
    DataGuard Academy - Used consistently as a top resource by vent.io team members to keep up with all the latest compliance practices

Help! I’ve got information security gaps in my vendor assessments...

Security is always a big deal for companies working in or around the Financial Services sector due to the sensitivity of the customer data. A fact not lost on vent.io – a digital and innovation subsidiary of Deutsche Leasing AG. The vent.io team had already built robust security practices around their software development offering, but they’d also found gaps in vendor assessments and risk management processes.

Always looking for proactive ways to improve, vent.io set to work on its ISO 27001 certification journey. There were two main strategic reasons: Not only would this fortify its overall security practices, but it would demonstrate vent.io’s commitment to excellence and position them as a trustworthy entity in the market.

Certification would also strengthen the bond of trust with its parent company, Deutsche Leasing, and safeguard project pipeline and revenue goals.

Why DataGuard?

Georgios Gkekas, Chief Technology Officer at vent.io, was already convinced of the need to secure ISO 27001 certification as early as possible. It would help protect the organization from these risks and signal vent.io’s information security credentials to the market and other key stakeholders.

But why choose to partner with DataGuard?

There are several reasons, it turns out. But high on the list was the flexible nature of DataGuard. “The holistic approach of combining a secure platform with the support from real-life experts made us faster in this process,” says Georgios.

This created a ‘Goldilocks zone’ not offered by other consultants and one that was effective and manageable. The result? “We felt cared for and supported, even in challenging times,” Georgios says.

The benefits of partnering with DataGuard

The certification brought significant time savings in contractual negotiations. Georgios reckons ISO certification reduced contract negotiations by 20-30%. The time savings for more complex contracts could exceed 100 hours because of reduced reliance on security questionnaires and the resulting back-and-forth between stakeholders.

 

The certification also made conversations with its parent company easier and positioned vent.io favorably in the broader market, where some customers demand the certification before agreeing to do business.

And people across the organization have a better understanding of information security at vent.io - and the vital role they play in supporting it.

Continuous infosec improvement

This is just the beginning. “The effectiveness of security measures doesn’t solely rest on the shoulders of a few individuals with extensive knowledge,” says Georgios. Instead, it hinges on the collective awareness and understanding of security practices across the entire team and company. Not just today – but on an ongoing basis.

“Always assume a data breach,” Georgios reminds us. “Even the most advanced companies acknowledge the inevitability of potential attacks.” In future, the key lies in being prepared to react swiftly to security incidents, minimising downtime and swiftly restoring systems. “With the advanced risk management, DataGuard has helped build a holistic view of all our 3rd party risks.”

And we look forward to continuing to help vent.io to get compliant and stay compliant as it grows in the future.

🏢 Organization Schema Preview (Development Only)
{
  "@context": "https://schema.org",
  "@graph": [
    {
      "@type": "Organization",
      "@id": "www.dataguard.com#organization",
      "name": "DataGuard",
      "legalName": "DataCo GmbH",
      "description": "DataGuard, the European leader in security and compliance software, is trusted by more than 4,000 organizations across 50+ countries. We help you identify and manage your security and compliance risks and fast-track your certifications and compliance by combining expert consultancy with AI-powered automation. Our purpose-built, all-in-one platform is developed with the experience of over 1.5 million total hours by a team of certified security and compliance experts.",
      "foundingDate": "2018",
      "taxID": "DE315880213",
      "logo": "https://7759810.fs1.hubspotusercontent-na1.net/hubfs/7759810/DataGuardLogo.svg",
      "url": "www.dataguard.com",
      "email": "info@dataguard.de",
      "telephone": "+49 89 452459 900",
      "address": {
        "@type": "PostalAddress",
        "streetAddress": "Sandstrasse 33",
        "addressLocality": "Munich",
        "addressRegion": "Bavaria",
        "postalCode": "80335",
        "addressCountry": "Germany"
      },
      "sameAs": [
        "https://www.linkedin.com/company/dataguard1/",
        "https://www.youtube.com/channel/UCEQzPZ6sCBCj9cAoBvaLL6w",
        "https://x.com/i/flow/login?redirect_after_login=%2FDataGuard_dg"
      ]
    }
  ]
}

✅ Organization schema markup for "DataGuard" has been injected into the document head.