Case Study: Agrokor Group achieves centralized vulnerability management and stronger ISMS compliance with QualysGuard (Qualys)

Reaping the Harvest of Good IT Governance

Agrokor Group, Croatia’s largest privately held retail and food conglomerate with more than 50 companies and tens of thousands of employees, faced increasing IT complexity from rapid regional expansion and acquisitions. To strengthen IT governance and formalize vulnerability and risk management as part of an ISO/IEC 27001-based ISMS—and to prepare for upcoming regulatory mandates—they needed a consistent, scalable way to discover, assess and remediate vulnerabilities across a large, distributed infrastructure.

Agrokor deployed QualysGuard’s SaaS vulnerability-management platform across its ISMS scope, gaining centralized discovery, prioritization, assessment and remediation workflows with delegated access for business units. The solution eliminated maintenance overhead, improved visibility into critical risks, standardized processes across subsidiaries, reduced operational costs, and provided reporting and scanning capabilities to support future compliance needs such as PCI DSS.

Agrokor Group

Ivo Pejakovic

Chief Information Security Officer