• Data Centre
  • Cloud
  • Connectivity
  • Unified Comms
  • Mobility
  • Managed Services

CNS, a Six Degrees company, worked with Bird & Bird to set up ISO 27001 project and the project office

Challenge

It is the globalisation of the firm’s practice, along with increased requirements from clients to ensure the security of the information they hold, that has led Bird & Bird to focus on Information Security. The initial challenge was to gain the buy-in of the executive board in order to support the initiative, which had originally been driven from the IT department. CNS was able to assist this process and was in fact asked to present on the subject to the executive board. With the backing of the executive, CNS completed all tasks within the required timescales and budget to help Bird & Bird achieve ISO 27001 in 2014.

Solution

After an 18 month program Bird & Bird was certified against the ISO 27001 standard in 2014. CNS worked with Bird & Bird in setting up the project and the project office, provided a structure for the Governance Regime, as well as completing the necessary risk assessments. Both the London and German offices were certified. CNS continue to work with the client to roll out the Information Security Management System (ISMS) across the remaining offices.

In addition to ISO 27001, CNS consultants also advise Bird & Bird on specific BAU security issues. These include technical testing, response to new threats and vulnerabilities, as well as security considerations for new systems.

Outcome

CNS worked with Bird & Bird to set up ISO 27001 project and the project office. Providing a structure for the Governance Regime, as well as completing the necessary risk assessments and policies in order to achieve ISO 27001 accreditation in 18 months.

ISO 27001 Certification and Compliance

A long term partnership has helped Bird & Bird set up their own ISMS and perform their own security and risk assessments. This has resulted in ISO 27001 certification and will result in on-going ISO 27001 compliance.