One of Asia’s largest listed catering groups based in Hong Kong with factories and branches in Mainland China

Size
5000+ Employees

Service
Information Security Awareness Training

Challenge
As a listed company, our client has put a lot of effort on training their employees to prevent security incidents such as information leakage and system hacking from happening. Therefore, our mission is to deliver practical and easy-to-understand training material to our client as to maximize the effectiveness of the Security Awareness Training. Also, to instill security awareness concept to a large group of the employees in different positions and with different levels of IT knowledge.

Solution
Divided the employees into three groups which require different IT security knowledge for performing their jobs.

Our security experts together with our technical specialists customized a set of security awareness training materials. Based on the IT knowledge and roles requirement of the employees, we divided the employees into three major groups for trainings:
  • IT Professionals
  includes IT staff such as system engineers and developers. This session mainly focuses on security in IT operation and development.
  • Non-IT Users
  involves normal end users such as back office user. This session mainly focuses on common cyber
  • Management
consists of management team such as top management and departmental head. This session mainly focuses on the IT strategy and security management.
 
Result
After the Security Awareness Training, the employees’ security awareness is enhanced and the occurrences of security incidents are significantly decreased. Raising security awareness of the employees helps company to ensure information security and build a sustainable environment with continuous improvement.

Deliverables:
 •    Information Security Management System design, setup, implementation and manual.
 •    Policies, procedures and guidelines relating to ISO27001 standard.
 •    Internal audit and vulnerabilities assessment.
 •    Technical recommendations for system and framework improvement.
 •    Practical experiences in facing ISO auditors during the qualification. 

Follow-up
Due to the fast changing environment on cyber security, Ringus proactively raises our clients’ security awareness, providing security advisory, consultation and notices for distribution within the organization in addressing new cyber threats.