Client Industry: Technical consultancy organisation working in the media space.
Assignment: Security audit and review of a leading television platform provider. Providing on-site support and coverage for the existing security team.
Term: 90+ days consultancy assignment.
Summary of services: Nubo were engaged to perform two main tasks, these were:
The security audit was performed using the ISO27001 (Security) standard as a guideline to check compliance. The IT services, systems and policies were audited and following the review a recommendation report was produced identifying areas that need to be addressed. To ease the process a priority matrix was produced to ensure that all critical items identified as high risks could be resolved earliest.
Nubo consultants also provided interim IT security operations manager cover during absences of the team whilst a restructuring was performed. This required the Nubo consultants to attend and facilitate security meetings, perform regular security scans using the existing tools and technology deployed and manage the internal identity system.
During the time Nubo consultants were on-site new security personnel have been introduced and knowledge transfer of the existing tools and systems were completed.
Nubo were also requested to commence a Request for Proposal (RFP) response for the renewal of security tools to provide a complete Security Information and Event management (SIEM) system for the television provider. The assigned Nubo consultant created the RFP document following internal discussions and meetings with both company stakeholders and incumbent service providers. The process relating to scoring and management of the RFP process is the responsibility of Nubo, reporting back findings to the internal stakeholders.