ISO27001 telecom operator compliance gap analysis

The goal of the security audit was to identify the gaps with ISO27001 information security management system standard compliance requirements and ISO27002 guidelines on implementation of these requirements. The client was one of the major telecom operators in the CIS region. Its product portfolio included optical data lines, MPLS networks, PSTN and mobile networks, datacenter and business value added services.


As a result of several months audit the customer got a set reporting documents which included:

  • High level management presentation of the current information security state
  • Detailed report with identified weaknesses and recommendations
  • Detailed report with ISO 27001 compliance requirements gaps
  • Detailed roadmap and project ToRs (terms of references) for information security projects
  • Mapping between identified technical/cyber-security risks to the business risks and metrics
This website uses cookies to give you the best experience. Terms & Conditions