Client Story: Security Project Management

May 28, 2022 • Client Story
Share this article

Overview

Our client employs more than 3,500 staff across 29 locations with significant national critical infrastructure.

The client required assistance in delivering security accreditation documentation and IRAP assessments for 26 systems. Tesserent was engaged to provide technical leadership to the project, which involved defining, planning, executing and reporting on the project. The Tesserent consultant was responsible for assisting in the engagement of security teams from two specialist service providers who were then tasked with developing the required security documentation and carrying out IRAP assessments of each system.

Tesserent worked with both service providers to establish the terms of the engagement, agree on templates and risk schemas, provide prioritisation of systems, review deliverables for quality assurance and manage progress against the timelines of the project. Tesserent further led stakeholder management and negotiated solutions to resolve delivery issues as they arose, including issues of timing and quality control.

Project Delivery

Tesserent used the PRINCE2 methodology to systematically define, plan, execute and report on project progress for each of the 26 systems within the scope of the project. The Tesserent consultant worked with a range of stakeholders to define the specific scoping for each of the systems identified within the original business case and worked with the service providers to ensure that resourcing was applied appropriately and within time and budget constraints. Tesserent used their position as a trusted advisor to ensure the client received the best possible outcomes within the timeframes and budget of the project, and successfully the full scope of the project within the planned timeframe despite difficulties with service provider performance. Tesserent took a neutral position to ensure that all parties were dealt with pragmatically and fairly, to ensure that the project was driven to a successful conclusion and all required outcomes delivered.

Outcome

Tesserent provided management and advisory services that enabled the client to identify and document cyber security risks in relation to 26 of their critical systems, together with the security controls in place to manage those risks.

The engagement of Tesserent enabled The client to deliver a successful outcome for the second tranche of their Cyber Security Program, delivering full sets of security documentation for 26 systems that enabled The client to understand their key cyber security risks within the context of the wider organisation risk management framework, and providing the Independent assurance of IRAP assessment to validate the deliverables.

Contact us

Speak with a Tesserent
Security Specialist

Tesserent is a full-service cybersecurity and secure cloud services provider, partnering with clients from all industries and all levels of government. Let’s talk.

Let's Talk
Tess head 1 min 2

Related Insights

Blog
The Evolution of Cybersecurity: NIST Releases Draft of Cybersecurity Framework 2.0
The Evolution of Cybersecurity: NIST Releases Draft of Cybersecurity Framework 2.0
Blog
Top 5 recommendations for the Victorian State Parliament to improve response against cyberattacks
Top 5 recommendations for the Victorian State Parliament to improve response against cyberattacks
Client Story
Client Story: PROTECTED Cloud Uplift Roadmap
Client Story: PROTECTED Cloud Uplift Roadmap
Client Story
Client Story: Achieving the Essential 8
Client Story: Achieving the Essential 8