We talked to Kilian Houthuijzen, information security consultant at Fendix, about how they help their customers become ISO27001 certified with Guardey.
Please tell us about Fendix.
Fendix was founded in January 2022. We help organizations to safely organize their data and comply with directives such as the ISO27001. The ISO27001 is a European certificate that demonstrates that your organization adheres to all information security requirements.
How does Fendix help their customers get ISO27001 certified?
Getting ISO27001 certified isn’t exactly a walk in the park. Here’s a quick grab out of what organizations are required to implement before they can get certified:
- ISMS policies and controls
- Security awareness training for their employees
- A Statement of Applicability (SoA) document
- An internal audit
We help organizations execute all the preliminary work they are required to do to get certified. This can either be in a coaching role or by completely unburdening them from all that work. This process takes about six months to complete. During that time, we map out the organization’s current security status, implement a security awareness strategy, and write out all policies and work instructions.
We’re pragmatic and flexible. For example, we can work remotely but are also completely fine with working on location.
When the auditors from the certification institute arrive at the organization’s doorstep six months later, they’ll be completely prepared.
How does Guardey’s security awareness game help with getting organizations certified?
An important part of getting an ISO27001 certification is investing in the security awareness of your employees. A while back, we were trying to set up our own version of a security awareness training in preparation for that. But creating all that new content would have taken us at least 8 hours every single month. That’s just not efficient.
With Guardey, security awareness training becomes affordable and you don’t need to invest any time in setting it up. All you need to do is monitor the performance of your team, which is easy in Guardey’s learning management system. That’s why we often advise our clients to simply use Guardey instead of doing all the heavy lifting of setting up their own training.
I love that Guardey was built on gamification and micro-learning. Users get recurring training content about cyber security every week, which helps them build up knowledge. After each challenge, they immediately get feedback about why their answer was either right or wrong.
Long story short: security officers don’t want to deal with all the hassle of creating the training material for their employees. And with Guardey, they don’t have to.
Don’t let hackers outsmart you
Make sure your employees are prepared to recognize cyber threats with Guardey. Start your 14-day free trial today.