To get that done and achieve their ISO 27001 & NEN 7510 certifications, Stap & Care Group enlisted the help of Fendix. With ClickUp as their information security management system (ISMS) and a hands-on approach, the certification was successfully achieved.
"We were already paying a lot of attention to security and getting things in order, but we hadn't structured it yet. As a result, demonstrating that we were doing this was very difficult." - Linda, Security Officer and Manager of Support Teams at Step & Care Group
The challenge: establishing burden of proof in an orderly fashion
Previously, information security at Stap & Care Group was in order, but without a central system to prove it. Large clients were increasingly asking for proof that processes met the highest security standards. The result? Lots of loose documents and time-consuming work to gather the right information for each request.
The solution: implementing ISO 27001 & NEN 7510 with ClickUp
Together with Fendix, Stap & Care Group set up an ISMS in ClickUp. Consultant Tim guided the team step by step and helped the Security Officer and management with the implementation. With ClickUp, tasks, deadlines and proofs were managed centrally. "The system keeps us on our toes and helps us not forget anything," says Linda. "We want to manage even more documents directly in ClickUp in the future." In addition to implementing the ISMS, security awareness was structurally incorporated into the way we work, including periodic phishing tests that are now routinely recorded.
A smooth certification process and a successful audit
From the start in February to the audit in December, the process was structured, and the audit passed without a hitch. "Tim's support during the audit was really valuable. Thanks to him, we knew exactly what information we could show at what time."
According to Stap & Care Group, Fendix's guidance made a big difference. "ISO 27001 & NEN 7510 are a huge tome. I don't know if you should want to do that without guidance. Tim's experience with audits helped enormously to make everything run smoothly.´´
Information security as an ongoing process
Certification has been achieved, but information security remains an ongoing process. "It has become an integral part of our work. We continue to improve and optimize processes where necessary." That's why Step & Care Group remains a client of Fendix. With the basic maintenance package, the ISMS does not fester and continues to improve continuously and Stap & Care Group will safeguard its information security.
.png)
