Within the scope of functions development, the client had a regulatory requirement for the
adoption and implementation of an information security management system (SGSI ISO 27001),
with its certification by an accredited entity.
The Client did not have sufficient knowledge or resources to carry out the implementation.
The Client was able to increase its maturity and information security management practice very
sharply through the adoption of ISO 27001, and was able to meet its ISO 27001 certification
objective in the established time, through INTEGRITY’s implementation service.
INTEGRITY provided a service composed by a project, with the intervention of its consulting
team that carried out the process of implementation and support in the certification obtained by
During this project, which lasted 9 months, INTEGRITY applied its 5-step roadmap proven in
numerous projects, through which supports the client in all activities, namely in the structuring of
processes and documentation, in the implementation of these processes, definition and action
of risk management analysis, operation, among other critical activities.
All activities carried out were supported by INTEGRITYGRC platform, which has a proven
effectiveness of more than 40% at the time of its implementation, taking into account the
functionalities provided by the platform that fully support all key activities in the implementation
of a given standard or regulation, from the documentary components to ensuring its connection
with the operational component.