- Services & Solutions
- Insights & Resources
- News Centre
- About Us
- Careers
Security
Security
Secure and Protect the organisation
In the 21st century, information security is a board-level issue – and ignoring security is a career-limiting activity. Threats to the information integrity of an organisation are on the increase and companies need to take protective measures as a matter of urgency. Capgemini can help clients in the private and public sectors to secure their businesses.
Other Solutions
- Applications Outsourcing
- Architecture
- Business and IT Strategy
- Customer Care and Intelligence (BPO)
- Custom Solution Delivery
- ERP Optimisation
- Information
- Infrastructure
- Infrastructure Outsourcing
- IT for Sustainability
- Knowledge Process Outsourcing (BPO)
- Organisation and Effectiveness
- Packages
- Transformation Programme Management
- Virtualisation
At Capgemini we have a successful track record in helping companies in both the private and public sector secure and protect their businesses through information security infrastructures and governance
This section includes:
The benefits of Security
- Cost reduction through managing an identity across a plethora of systems.
- Brand protection.
- Compliance.
- Company asset (physical and information) protection
- Safety.
- Share price protection.
Capgemini’s approach
Capgemini’s Security expertise allows clients to create a secure business including IT infrastructure strong enough to withstand security challenges of today and tomorrow. Our services include security assessment, strategy and planning, architecture and design, implementation, and operations. Our solutions include:
- The Adaptive Security Index
- Accreditation Management
- Data Protection and Privacy
- CISO advisory and Interim CISO
- Threat and Vulnerability Management
- Identity and Access Management
- Integrated Security Infrastructure
- Security operations
- Security architecture design and development
- Security governance to government and ISO27001 standards
Capgemini capability
Security Governance
Information security risk assessments; security strategy formulation & RoSI; policies, procedures, standards and business processes (BS7799,COBIT,ITIL); business continuity & disaster recovery planning; and regulatory compliance.
Security Architecture
Security strategy, architecture and requirements; securing ERP & CRM applications (SAP, Oracle, Siebel, BeA Weblogic); and code walkthroughs (Microsoft, Java, Middleware).
Identity and Access Management
ROI business cases and readiness reviews; solution design & process re-engineering; provisioning of user
identities & access privileges; and user identity & access audit system.
Infrastructure Security
Network & infrastructure security (design, build, integrate, test, review); threat & vulnerability protection; platform and operating layer security; and penetration testing (vulnerability assessments).
Security Operations
Build security operations centre (SOC) capabilities; threat & vulnerability management toolset & processes; event management & incident response; and configuration & change management.
We can help you assess where your organisation is in terms of infrastructure Security.
Success Stories
UK Government Department
A large UK central Government department needed to develop an Enterprise Architecture to allow it to better manage and specify its outsourcing contracts, and to construct a uniform set of IT services from its diverse existing systems. Capgemini developed the architecture to include complete coverage of the department’s security and risk management objectives. The department did not have a comprehensive set of business drivers and valuations that could drive the development of technical security policies. Capgemini analysed the department’s assets as identified by the Business, Information, Applications and Infrastructure architectures. It identified business drivers and valuations for security by talking to the existing security team and practitioners at the ‘coal face’. This allowed the department to give integrity and non-repudiation issues their full weight alongside the more conventional confidentiality concerns. The security architecture was fully integrated with the other architecture aspects and followed existing Government guidance such as the Manual of Protective Security.
International Wholesaler and Shipping Agent
Capgemini was engaged by this leading shipping agent firm to produce a compliant IT security policy and process framework to meet both the Sarbanes-Oxley Act of Congress (US) (SOX) and ISO 17799 standards. It also required that Capgemini highlighted management responsibilities in respect of SOX. The solution for SOX integration required an in-depth knowledge of the COBIT framework and how it integrated with the requirements of the SOX Act based on the COSO requirements. With the COBIT Controls identified these were implemented with the ISO 17799 Standards which then formed the basis of the solution. Where there were gaps between COBIT and ISO 17799 essentially around the management requirements for SOX these were also identified to the client. The solution provided the client with a workable policy which also included a number of additional deliverables around Security Management (ITIL Based) including Asset Management, Data Classification, DR & BCM measures and Security Incident Reporting.
Contact our Expert
