Global Information Security Review for International Home Assistance Company | Resources
 
 
Xcina Case Study

Global Information Security Review for International Home Assistance Company

The client

An International home assistance company headquartered in the UK that insures, maintains and fixes household services for their customers using their network of approved service engineers. They deliver a range of services including plumbing, drainage, electrics and heating and operate in the UK, North America and a number of countries in Europe including France, Spain and Italy.

The work

With increasing Cybersecurity threats, the risk of data breach, and an expanding business the UK board wanted to assess how well each country was operating in line with the company’s security posture and industry best practice.

How we helped

We worked with the UK board to agree its security posture and determined that the company would be benchmarked against the combined security control requirements defined by the Payment Card Industry Data Security Standard (PCI DSS), the International Information Security Standard (ISO/IEC 27001) and the requirements of UK Cyber Essentials. A team of specialist Information Security consultants and Qualified Security Assessors (QSAs) undertook an audit of each operating company worldwide and determined how well they were aligned to best practice and to highlight any weaknesses. An overall report of findings and a heatmap for each operating company and the group was put into place against the defined benchmark.

Value added

We provided the UK board with a comparative assessment of the effectiveness of security controls operating in each country with recommendations for improvement and to establish synergies and consistency in operations across the Group.

Industry and sector:

Infosec/Cybersecurity

Solutions and service area:

What our clients say

"Xcina is always responsive to any question we have during the time we are implementing data protection remediation activities, they keep us informed and understand what we need and what we’re trying to do. "

Getac Technology Corp, Legal Affairs Center

"Xcina is always responsive to any question we have during the time we are implementing data protection remediation activities, they keep us informed and understand what we need and what we’re trying to do."

ParkMobileUK, Managing Director

"Xcina Consulting performed an annual review of our card data environment, and ensured that we are compliant with the PCI-DSS. We continue to work with their experienced QSAs, leveraging their guidance and best practices so we have the highest possible level of security controls in place."

DKB Brands, Data Protection Officer

"Xcina really helped us to kick start our data protection compliance process. They took the time to speak to all departments of the business and outlined our highest risk to lowest risk areas. The insight and guidance they provided was essential for our business to become GDPR compliant."

Portman Settled Estates Limited, Estate Secretary

"Xcina’s ongoing support has ensured that our employees feel confident when dealing with data protection matters, with best practice knowledge and expertise from consultants who have taken the time to get to know our business and our industry."

National Bank of Kuwait, Compliance Officer

"Xcina worked with us on a number of data protection matters, including subject access requests and gave helpful, practical advice which reflected their understanding of technology issues as well as legal matters."

Your World Recruitment, Group IT Director

"We have worked with with Xcina successfully for two years, initially on internal GDPR GAP analysis. We now have them engaged as our ‘Virtual DPO’ provider and regularly receive useful, pragmatic and, more importantly, actionable advice on all areas of Data Protection."

Quadrangle Research, Group Chief Operating Officer

Discover how we have supported businesses like yours >>

Subscribe to Updates

Receive regular updates from our expert consultants as they provide clarification and guidance on issues impacting your organisation.

Subscribe >>