Katerina

Katerina Konstantinou

Operations Manager

Since 2000, Grant McGregor has been providing appropriate and secure technology, winning multiple awards along the way. As a world-class Managed IT Service Provider (MSP), Grant McGregor is a profitable and mature business with a team of experienced and knowledgeable technology people who care for each and every one of our clients and their businesses.

We help to make technology and people work in harmony by providing people-centric Managed IT Services including service desk support, project delivery, strategy consultancy and cyber security assurance.

Founded: Founded in 2000
Employees: 
22
Target customer: 
B2B

The Challenge

What challenges were you and your team experiencing before working with us – what prompted you to seek a solution? Not a challenge per se, but we were looking for a partnership with a consultant to guide us through our ISO 9001 and ISO 27001 certification journey. As a trusted partner to our customers, it is important to demonstrate that we take our security seriously and increase confidence in the quality of our service to their people.

Please describe the reasons you decided to work with us. It was the professional approach and honest ISO consultancy scoping conversation that we had, that was the reason we chose to engage with Evalian. Meeting our future consultant Danny made the difference as he understood our business structure and level of readiness. Also, the progress tracking approach and reporting were a big plus for us.

Did you have any expectations going into the process? We had expectations and I had previous experience on a personal level, however, all of our expectations were met by Evalian throughout the process.

Solution

Can you describe the process we took your business through? Implementing ISO 9001 and ISO 27001 involved a structured approach to establish an Integrated Management System. The journey started with understanding the standards’ requirements and conducting a gap analysis against these requirements, resulting in our first CIP plan being documented and ready for action.

Moving forward, we updated our existing documentation and added new policies and procedures to meet the standards while at the same time, we were trained on the ISO concepts and best practices by attending targeted workshops, related to individuals’ roles within the organisation.

Throughout our journey, our risk assessments levelled up by establishing a new methodology and our BIA and BCP were re-defined with fresh eyes, thoroughly guided by our consultant.

Finally, our consultant Danny, supported us in conducting our first internal audits and the first IMS Management Review to mark our achievements and plan for the future.

Were there any challenges you found along the way and how did you feel we or your consultant, helped to support you through that? Not strictly a challenge, but a big change/adjustment for us was to mature from Disaster Recovery Planning, to Business Continuity Planning. The two planned workshops and Danny’s advice and feedback allowed us to ensure a more holistic approach to managing risks related to information security and maintaining the continuity of critical business operations.

Impact

What has been the most significant achievement for your business facilitated by using our services? We have now achieved ISO9001:2015 and ISO 27001:2022 certifications. Our ISO journey enabled us to streamline processes, enhance our security measures and foster a culture of quality and security awareness among the Grant McGregor team.

Achieving the certifications gives us a competitive edge in the MSP market and, by identifying areas for improvement, we can continuously refine our management system leading to improved efficiency, customer satisfaction and overall performance.

  • This field is for validation purposes and should be left unchanged.

icon

Talk To Us:

If you’ve had a data breach, are confused about DPOs, or would like to discuss penetration testing or cyber incident response training, please give us a call or email us. We promise no hard sell and only real-world guidance.

We love to talk privacy and security and we’d be delighted to discuss your requirements. If we can’t help for any reason, we’ll probably know someone who can.

Get In Touch