Securys has been invaluable in providing me with scalable resource to review and remediate our legacy processes as well as meet the organisation’s demands as it launches new projects and initiatives that involve personal data. I have been particularly impressed with the efforts they have made to really understand the organisation and the breadth and complexity of the personal data processing activities taking place. This has led to the wider business seeing them as a valued advisor and business partner.
Global mining firm
Global privacy assurance programme.
Client objectives: manage privacy globally including: process discovery, risk-scoring, assessment and remediation of existing processes, privacy-by-design programme implementation and operation.
Securys provided coverage across 26 countries and more than 100,000 staff, spanning operational intervention in individual projects and aggregated risk reporting to board level. Retained by Head of Privacy.
Global insurance company, transportation
Review of privacy and cyber-security with particular focus on cross-regulatory compliance.
Client objectives: maximise efficiency of compliance with multiple regimes, notably GDPR, CCPA and 23NYCRR500.
Securys conducted a combination of interview, document review and process mapping, and applied our proprietary risk-scoring methodology to produce an interactive risk-prioritised dashboard with a total of 80 actionable recommendations. Now engaged to implement recommended actions. Retained by CTO and CRO.
Multinational engineering consultancy
Review of cyber-security and information management.
Client objectives: reduce cost and complexity by cutting supplier count, reduce risk and improve security by migrating from on-premise and proprietary systems to cloud or managed outsource, achieve and retain ISO-certification.
Securys provided management consultancy and cyber-security assessment across multiple countries and languages. Retained by CTO.
Review of privacy focus on internal HR.
Client objectives: visibly assure staff privacy in a multi-country, high-mobility environment; mitigate risks from staff turnover.
Securys conducted an in-depth review of HR processes mapped against local country regulation and provided policy frameworks and specific recommendations for improvement. Retained by COO and Global Head of HR.
Review of information security and operational compliance policies.
Client objectives: ensure compliance with current regulation, support JV bid for major mortgage portfolio.
Securys delivered a comprehensive policy framework with operationalisation assistance. Retained by CEO and CFO.
Securys combined rigorous application of expertise with a refreshingly practical approach. We were particularly impressed that their advice was consistently actionable and sensitive to the business’s needs, and that they engaged positively with our employees throughout, building real engagement with privacy and cyber-security.