The combination of a digital web platform and individual support from certified experts enables companies to efficiently implement their information security goals. This is how DataGuard supports companies of all sizes and industries in laying the foundation for a sustainable growth strategy, increased customer trust, and enhanced security.
With offices in Munich, Berlin and London, established privacy company DataGuard is now releasing the perfect addition to their portfolio: an all-in-one solution for information security. Their “InfoSec”-as-a-Service” offering combines personal and strategic consulting from interdisciplinary, certified industry experts with an intuitive, digital web-based platform that serves as an information security management system (ISMS) and helps digitise many information security processes.
The planning, implementation, and maintenance of the ISMS can be divided into individual process steps, which are digitally recorded in the DataGuard information security platform and visible on a dashboard. Features range from structured questionnaires and downloadable templates to the recording of assets and associated risk assessments through to auditable documentation.
Both the platform and the personal support are tailored to the customer’s needs. In doing so, DataGuard provides assistance as part of continuous consulting or as an external Information Security Officer. They guide companies step by step through all information security management processes, propose clear recommended actions, calculate risks, and support in preparing for information security certifications or assessments such as ISO 27001 or TISAX®, as well as in the training of the entire workforce. The major goals include confidentiality, integrity and availability of information.
“Information security and data protection are the foundation for healthy company growth. This is how we contribute to the long-term success of our customers,” says Kıvanç Semen, Co-Founder and Managing Director of DataGuard. “Our compliance solutions aim to ensure our customers’ security and help them fully concentrate on their core business.”
 TISAX® is a registered trademark of the ENX Association
Four steps to efficient information security management according to ISO 27001:
1. Goal setting, documentation, asset and risk assessment
DataGuard first defines the customer’s ISMS scope of application (i.e., clarifies which data needs to be protected) by getting an overview over the company’s business operations, the organisational structure, plus the assets or technologies they use. With the help of questionnaires all security-relevant activities and existing assets are recorded, and a risk management system is set up. A report is generated to give clear recommended actions.
2. Validation, KPIs, documentation
DataGuard then prepares the information security documentation, including the ISMS process and guidelines for IT, employees, and suppliers. The new KPIs for the ISMS are determined together with the customer.
3. Training and internal audit in accordance with ISO 27001
DataGuard then enables efficient and digital training of the company's employees via their web-based platform, including training certificates. In addition, DataGuard carries out an internal audit tailored to the company’s needs in accordance with ISO 27001. If needed, the guidelines are customised specifically to the company.
4. Preparation for external audit
On request, DataGuard helps their customers preparing for the initial ISO 27001 certification by an external auditor and also takes part in it.
“By providing tailored consultancy services and supporting our customers in preparing for information security certifications, we are jointly laying the foundation for an intelligent growth strategy,” says Christian Taube, Team Lead Information Security at DataGuard. “Our self-developed platform is at the heart of our offering. Classic information security management is synonymous with Word files, Excel spreadsheets, and countless personal meetings – with us, as much as possible is digitised.”
All features of the “InfoSec-as-a-Service” solution at a glance:
- Dashboard: Status and task overview
- Structured questionnaires: detailed inventory of the processes according to requirements of ISO 27001 and TISAX®
- Complete, auditable documentation: for all information security processes
- Prioritised recommendations for action: efficient and well-founded goal implementation
- Ready-made templates: available for download at any time
- DataGuard Academy: reliable training for the entire workforce
- Asset management: efficient assessment and classification of assets and the associated risks
- Incident management: immediate support when businesses need it most
- Risk assessments: quick identification of threats before they become vulnerabilities
DataGuard is an all-in-one data privacy and information security platform. Over 1,500 customers use DataGuard’s end-to-end “Privacy-as-a-Service” and “InfoSec-as-a-Service” solutions to comply with regulations such as GDPR or attain and retain certifications such as ISO 27001 and TISAX®. Over 150 employees in Munich, Berlin and London enable their customers to operationalise privacy and information security throughout all their business processes – thereby driving compliance, mitigating risks, and generating value through trust and transparency. To learn more, visit www.dataguard.co.uk or connect on LinkedIn or Twitter.