.png)
The challenge
TCSNL was struggling with a lack of capacity and in-depth knowledge of the ISO 27001 standard. "Preparing for the audit was a complex task that required both specialized knowledge and manpower," said Stefan Evers, Managing Director. "Our own Security Officer unfortunately could not carry this extra burden." Moreover, ISO 27001 goes beyond cybersecurity. It includes optimizing all business processes with information security as a central theme. This requires support within the entire organization and thus a broader approach than purely technical measures.
The solution
Fendix took on the role of implementation partner. Jelle started his job as a result, working closely with the TCSNL team as an external colleague to integrate the required knowledge and optimize the business processes, with information security at the core. We not only engaged with management to get their support, but also explained why information security is so important for the entire organization.
For employees, it often seems like a distant memory. Everyone works with certain systems or wants insight into certain documents, and then suddenly a specialist comes along and makes rules for this. Jelle of Fendix perfectly outlined and clearly communicated the rules, which allowed employees to get more and more involved in the subject. Jelle did this by seeking information from the right responsible persons, sitting down with them, making sure you receive the right information, setting deadlines, and staying in touch.
Results
The hard work paid off. In April 2024, TCSNL passed the audit with flying colors. "We were given one point of improvement and no shortcomings. Proof of our professionalism and Fendix's thorough approach," Stefan said. Jelle also had an important role here. He was responsible for drafting the documentation and ensuring that these documents were "ISO-proof," which ensured that all required documentation was available, checks had been performed, and evidence collected.
More than a certificate
ISO 27001 certification is more than a piece of paper. It has changed the way TCSNL handles information security. It is an important part of the company's operations, with a focus on both current and new employees. "Every new employee immediately receives training on what the certification entails and what we want to achieve as a company," Stefan says.
One of the biggest changes is tighter control over access to documents, systems and locations. This is based on the need-to-know principle, with an extra focus on risk assessment. "Our growth ambitions make regular monitoring of these processes necessary," Stefan said.
Why Fendix?
Stefan Evers is very appreciative of Fendix's service, "Fendix's approach was not only professional, but also personal. They understood our needs and made sure everyone was on board. TCSNL is therefore also determined to continue improving information security in cooperation with Fendix. For example, Jelle will provide maintenance and train internal Security Officers in the near future."
This collaboration with TCSNL shows what a strong partnership can achieve. Together, we not only achieved ISO 27001 certification, but also laid a solid foundation for continuous improvement in information security.
