Richard John

Senior Consultant

ITSUS Consulting provides ICT solutions for clients operating mission-critical communications systems. We collaborate with international aerospace, defence and public sector organisations to deliver complex digital transformation programmes.

Founded: Founded in 2008
23 (22 when undergoing ISO 27001 accreditation)
Target customer:
Defence and public sector

The Challenge

What challenges were you and your team experiencing before working with us – what prompted you to seek a solution? In 2021 we enrolled in the Goldman Sachs 10,000 Small Business UK programme to develop a business growth plan and take the business to the next level. We recognised the barriers to entry in our industry and the accreditations, memberships and standards that are needed to be recognised as a trusted supplier in our industry. To adapt to the market, we wanted to be proactive in improving our information security standards and become ISO 27001 accredited.

How did you go about searching for the solution and services?  We knew we needed a consultancy to direct us down the right path and give us support with their expertise. We were aware of some potential consultancies through our client base but wanted to engage with a new supplier who could provide impartial support from an outside point of view. Fortunately, Evalian was recommended to us through a professional network, giving us the kind of support we were seeking.

Please describe the reasons you decided to work with us. Following an introductory call, we felt like our ambitions were well understood by the team. When we received the statement of work we were very happy with how comprehensive and clear it was, providing us with confidence from the start of the project.

Did you have any expectations going into the process? I’ve worked as part of an incident management response team before, so I understood the end-to-end process of compliance and knew generally what to expect but needed an external expert to support us in fine-tuning and filling in any gaps.


Can you describe the process we took your business through? We had the initial ISO benchmark assessment last year, and then there were 5 workshops spread over a year for the key aspects of the standard, such as risk management, change management and business continuity. There were then a further two review sessions, one for senior management and one for the whole company.

These sessions helped me to understand our levels of awareness as an organisation, how we demonstrated compliance and the areas we needed to improve upon.

Were there any challenges you found along the way and how did you feel we or your consultant, helped to support you through that? I think the only real challenge, from my perspective, was joining after the engagement had already started with Evalian. Danny was great at getting me up to speed  – he went above and beyond, helped with any questions and was extremely responsive which just helped the process go smoothly.


What has been the most significant achievement for your business facilitated by using our services? The thoroughness of reviewing our processes and compliance and the awareness of our company as a whole. We have the confidence that we are doing things right, with the support from specialists on hand.

  • This field is for validation purposes and should be left unchanged.


Talk To Us:

If you’ve had a data breach, are confused about DPOs, or would like to discuss penetration testing or cyber incident response training, please give us a call or email us. We promise no hard sell and only real-world guidance.

We love to talk privacy and security and we’d be delighted to discuss your requirements. If we can’t help for any reason, we’ll probably know someone who can.

Get In Touch