The client
An International home assistance company headquartered in the UK that insures, maintains and fixes household services for their customers using their network of approved service engineers. They deliver a range of services including plumbing, drainage, electrics and heating and operate in the UK, North America and a number of countries in Europe including France, Spain and Italy.
The work
With increasing Cybersecurity threats, the risk of data breach, and an expanding business the UK board wanted to assess how well each country was operating in line with the company’s security posture and industry best practice.
How we helped
We worked with the UK board to agree its security posture and determined that the company would be benchmarked against the combined security control requirements defined by the Payment Card Industry Data Security Standard (PCI DSS), the International Information Security Standard (ISO/IEC 27001) and the requirements of UK Cyber Essentials. A team of specialist Information Security consultants and Qualified Security Assessors (QSAs) undertook an audit of each operating company worldwide and determined how well they were aligned to best practice and to highlight any weaknesses. An overall report of findings and a heatmap for each operating company and the group was put into place against the defined benchmark.
Value added
We provided the UK board with a comparative assessment of the effectiveness of security controls operating in each country with recommendations for improvement and to establish synergies and consistency in operations across the Group.