Synopsis
The customer wanted to conduct an FFIC assessment of the environment to check its preparedness for the audit. The customer also wanted the partner to conduct a security assessment and help define a cybersecurity strategy to meet its future business objectives. Coforge worked with the customer in aligning its cybersecurity strategy with its organizational strategy.
The Client
The client is a Japanese multinational banking and financial services institution headquartered in Tokyo, Japan. The client provides financial products and services to a wide range of clients, including individuals, small and medium-sized enterprises, large corporations, financial institutions and public sector entities.
Business Challenge
The customer was looking for a partner to provide the below-mentioned services:
- Perform the FFIC assessment prior to their audit.
- Define security policies and processes for vulnerability management, risk management, compliance management etc. for the customer.
- Perform cloud readiness assessment for O365 migration.
- Provide a future security roadmap.
Our Solution
Coforge approach to the solution involved the below-mentioned tenets:
- Conducted workshops and interviews with the stakeholders to understand the existing environment of customers
- Conducted the FFIC assessment of the customer’s environment leveraging Coforge’s GRC framework
- Perform cyber maturity assessment to determine the current security posture of the environment
- Used Coforge’s GRC framework to perform a tiered evaluation of the security controls and processes for the identification of gaps and improvement areas
- Leveraged Coforge’s GRC services to define customer-specific security processes based on industry standards
- Conducted cloud readiness assessment of the environment
- Defined policies and processes for the safe adoption of cloud
The Result
- FFIC assessment report with identification of key initiatives to improve security ratings
- Detailed cyber maturity assessment report providing a view of the current state and strategy to improve maturity level and reduce risk ratings
- Future roadmap for cybersecurity to optimize investment in security technologies
- Defined O365 adoption processes and policies
