COMPREHENSIVE AUDIT AND INFORMATION SECURITY STRATEGY DEVELOPMENT

RUSAGRO

GOALS AND OBJECTIVES

  • BUSINESS OBJECTIVE

    Global business digitalization.

  • IT OBJECTIVE

    Assessment and processing of information security risks associated with the implementation of an IT strategy for digitalizing business lines.

IMPLEMENTATION

The first stage of the project involved an assessment of current levels of enterprise security. In order to achieve this aim, Jet Infosystems specialists conducted a comprehensive information security audit covering the central offices and production sites for four business lines. This audit involved the examination of 16 information systems and 4 automated process control systems (APCS). Based on audit results, Jet Infosystems specialists and experts from the agricultural holding worked together to design a 5-year strategy for information security development.


The ISO / IEC 27001: 2013 international standard was chosen as a process framework. For a more detailed study of architectural fluctuations, the Kill Chain concept – which describes universal scenarios for malicious activities – was also taken into account.


The long-term information security strategy which was developed also includes control mechanisms; the maturity level of information security processes is reviewed annually using GAP-analysis. Jet Infosystems Information Security Center experts ran the first of such analyses in time for year-end 2018.

Read more

PROJECT RESULTS

The scope of the project covered four Rusagro business lines (meat, fat and oil, sugar and agricultural), each having a unique infrastructure and team. The creation of a unified information security development strategy required non-trivial solutions taking account of the specifics of each business line.

This first audit became a starting point for further cooperation with this business leader on the Russian agricultural marketplace.
  • 16

    Number of information systems surveyed during the audit phase

  • 4

    Number of APCSs examined as part of the audit

  • 5 years

    Period for the long-term development plan

  • ISO/IEC 27001:2013

    IS standard chosen as a process framework

CUSTOMER REVIEW

It is vital for us to maintain the balance between innovation and security during high-tech production developments. It goes without saying, that digitalization poses new security challenges, as well as creating the groundwork for business growth. For this reason, we pay close attention to cybersecurity issues, and Jet Infosystems experts are extremely helpful to us during the implementation of this long-term IT development strategy.

Pavel Dreiger

Head of IT Department, Rusagro Group

All client projects

view more projects

DO YOU HAVE A SIMILAR PROBLEM?

I have read and agree to the privacy policy

By continuing to use this site, you consent to the processing of your personal data using the Internet services Yandex Metrika and Google Analytics. The procedure for processing your personal data, as well as the implemented requirements for their protection, are set out in the PDN Processing Policy. If you do not agree with the processing of your personal data, you can disable the storage of cookies in your browser settings.

Read more