Case Study: State Transit Authority

Toyota - road

ISG is involved in the design of an enterprise Information Security Management System that is being deployed as a platform for support a wide range of information related initiatives being undertaken by the STA. The system will be deployed as a programme of initiatives to promote the secure handling of information within the STA.

At the heart of the approach is the concept of the IT Governance Maturity model. This allowed State Transit to benchmark their existing IT Security Maturity practices against the model, determine a set ofTransport - train station target maturity levels and put in place a set of activities to address the gaps.

This approach to IT Governance maturity is in contrast to the traditional control centric approach which benchmarks organisations against a defined set of controls and defines a programme of improvement initiatives to address detailed control improvement initiatives. By addressing the construction of the programme at the process and governance level, the benefits of the programme can be more readily linked back to benefits and desired outcomes for the organisation.

The ISMS process focus has the benefit of establishing a governance platform that can be used for operation of other technology related improvement initiatives for IT Service Management and the IT PMO. By defining process related linkages to other PMO or ITSM processes, the ISMS processes can become a workflow and control platform to establish process governance over these activities.

serena_logo-2 ms-partner-gold-1 aisa-logo logo.fortify.print aris-logo