Challenge

KnowL works with sensitive customer data and software platforms where information security is crucial. The KnowL propositions are continuously enriched and increasingly delivered internationally. The organization wanted to know which components still required attention for ISO 27001 recertification, considering organizational scale without compromising professionalism. The analysis had to result in a shared roadmap towards certification.

Approach

Tible conducted an analysis based on interviews, document reviews and a practical audit. The assessment was mapped to the chapters of ISO 27001:2022 and focused on controls from Annex A. Key elements:

• Thorough intake with management and IT responsible
• Review of existing processes, risk insights and documentation
• Explanation and scoring on all standard elements including prioritization
• Delivery of a clear report and recommendations

Results

• Clear insight into current ISO 27001 compliance status
• Concrete quick wins and recommendations per domain (policy, access control, logging, etc.)
• Foundation laid for ISMS setup with scalable controls
• Report shared with stakeholders in preparation for certification trajectory
• Solutions tailored to the organization's growth stage