| Customers: Ingosstrakh of SPAO
Contractors: Informzashita Product: Projects of external audit of IT and security (in tch PCI DSS and SUIB)Project date: 2017/09 - 2018/02
|
The Informzashita company announced on April 5, 2018 project finish in one of the largest insurance companies – SPAO "Ingosstrakh". The works are completed in two directions at once: a complex information security audit and reduction of an order of personal data processing in compliance to requirements of the legislation of the Russian Federation.
Taking into account a big organization structure of SPAO "Ingosstrakh", the maximum pro-activity in collection of information with active participation and the involvement of responsibles of SPAO "Ingosstrakh" was a large number of business processes and platforms on which works were carried out, a priority of specialists of Informzashita. It was reached due to planning and detailed preparation for holding an interview. This approach allowed to parallelize accomplishment of a part of works and also not to allow repeated interviews.
The purpose of complex audit on the information security (IS) was receiving independent expert evaluation of level of providing Information Security in SPAO "Ingosstrakh", development of the short-term and long-term plans of development of cybersecurity based on minimization of business risks.
Updating of information on personal data processing, completion of normative and administrative documentation and the recommendations received according to the results of works will allow company SPAO "Ingosstrakh" to conform to requirements of the legislation of the Russian Federation in the field of personal data protection. Also, it will help to minimize possible sanctions from state bodies, such as involvement of the operator or responsible persons to administrative or to other types of responsibility, forced suspension or the termination of personal data processing by the operator.
 | "Within the project several IB major directions were mentioned: the personal data protection, introduction of the mode of a trade secret, potential threats connected with the business processes and technologies applied in SPAO "Ingosstrakh". The received results will allow to change qualitatively the level of information security". Margarita Lodchinova, leading business technologist of the Center of business technologies of Directorate of information technologies of SPAO "Ingosstrakh" |  |
| The site content is translated by machine translation software powered by PROMT. The machine-translated articles are not always perfect and may contain errors in vocabulary, syntax or grammar. Read original article If you find inaccuracies or errors in the results of machine translation, please write to editor@tadviser.ru. We will make every effort to correct them as soon as possible. |