Case Study: Capgemini achieves stronger information security and competitive advantage with BSI ISO/IEC 27001 certification

Using ISO/IEC 27001 Certification to Increase Resilience, Reassure Clients and Gain a Competitive Edge

Capgemini UK, Europe’s largest IT services company and a global leader in consulting, technology and outsourcing, needed to strengthen information security while reassuring commercial and government clients, meeting tougher regulations, and gaining a competitive edge. The company wanted a practical, risk-based approach that would protect client assets, improve confidentiality, integrity and availability of information, and reduce the time and cost spent proving its security credentials in bids and tenders. Vendor BSI supported Capgemini through ISO/IEC 27001 information security management certification.

BSI helped Capgemini UK define scope, take the work in manageable phases, and complete the external audit for ISO/IEC 27001. The result was certification achieved in just 10 months, with improved security, stronger security awareness and buy-in, better documentation and reporting, and a “badge on the wall” that reassured clients. Capgemini also reported less need for costly external audits by customers, and by 2011 had recertified with 10 of 14 UK sites covered, with further rollout planned.

Capgemini

Bill Millar

Head of Security