How KPS strengthened and unified infosec management across multiple offices with IO

Digital transformation experts KPS provide the software, tools, and strategies its clients need to create high-quality customer experiences on their own websites. KPS specialises in supporting mid-to-high-end retailers, including many household names. KPS’s security-conscious clients, who deal with vast amounts of customer financial and personal data, expect a high standard of information security from KPS.

KPS decided to pursue ISO 27001 certification primarily because it is becoming a critical requirement for both existing and potential clients.

But achieving certification was extra challenging because of KPS’s decentralised set-up — with four offices across three countries using different systems and processes due to past acquisitions. KPS faced several challenges which hampered information security management and oversight at enterprise level: 

• Varying levels of information security maturity across multiple sites
• Decentralised, siloed data held across various spreadsheets, emails, and people’s heads
• Inefficient review and approval processes via email chains

Initially, the KPS team considered using spreadsheets and SharePoint to manage the ISO certification process — but soon realised the complexity involved. They decided to invest in a specialised solution to help them efficiently implement and manage a robust information security management system, including embedding a culture of compliance.

After demoing different tools, KPS chose ISMS.online for its ease of use, compatibility with KPS’s existing single sign-on app, and comprehensive resources to help achieve ISO 27001 accreditation.Implementing ISMS.online was straightforward.

KPS staff find it easy to learn and use — even for non-native English speakers.

ISMS.online provides guidance, content, control attributes, risks, and suggested controls, all ready for KPS to adopt, adapt, or add to, as required — all in one centralised, user-friendly platform. Digital signatures streamline approval processes.

Just three months into their ISO 27001 certification journey, KPS has already seen significant improvements in data management efficiency.

Using ISMS.online has streamlined workflows, improved visibility, and fostered easier collaboration, making it simpler to manage and track tasks across different locations.KPS is bolstering its market position simply by working towards certification — landing two new contracts thanks to this.

ISMS.online is playing a critical role in increasing accountability within KPS. The platform’s real-time progress tracking, clear assignment of tasks, and automated reminders ensure everybody knows what they need to do — and oversight is much easier.

Adopting ISMS.online has catalysed a cultural shift towards stronger information security compliance and risk management within KPS — sparking important internal conversations and highlighting existing strengths.

With their eyes firmly set on achieving certification by the end of 2024, the KPS team is now focusing on implementing policy packs for staff and suppliers.

Monitoring compliance is straightforward with digital signatures in ISMS.online.Despite working to an ambitious deadline, having ISMS.online is boosting KPS’s audit confidence.

For more information, visit our ISO 27001 solutions page or contact us to see how we can help your business.