French agri-food company specializing in food processing and distribution
Sector
Agri-food
Contact person’s role
Executive Management / Information Systems Department (ISD)
Challenges
Strengthen information system security and achieve compliance with ISO 27001 and the GDPR
Employees involved
100 employees trained
Location and format
Audit and pentest conducted on-site and remotely
Securing your data: cyber strategy and ISO 27001 & GDPR compliance
The company wanted to further secure its information system and capitalize on its existing practices to comply with ISO 27001 and GDPR standards.
Objectives
- Evaluate existing systems.
- Identify areas for improvement.
- Formalize a compliance approach through a security audit, intrusion tests, and the creation of internal standards (PSSI, processing register, action plans, etc.).
Kh-Corporate conducted a two-stage strategic audit
- In-depth analysis of the technical, organizational, and regulatory environment
- Operational recommendations prioritized according to their impact.
- A certified partner was brought in to carry out intrusion tests under real conditions.
Results achieved
Thanks to the action plan implemented, the agri-food company has strengthened its regulatory compliance and the security of its information system:- 95% coverage of ISO 27001 and GDPR requirements
- 83% of critical vulnerabilities corrected in 3 months
- Complete encryption of sensitive data
- Incident response plan operational in less than 30 minutes
- 100 employees trained in GDPR and cybersecurity, with a satisfaction rate of 92%.