Customer Success Story: Govtech Solutions

ISO 27001: Transforming Security from Non-Compliant to ‘Best in Class’

Airbus Protect successfully partnered with Govtech Solutions to transition their information security from a non-compliant state to a ‘best in class’ benchmark. By delivering expert, end-to-end guidance, Airbus Protect secured Govtech’s business viability, enabling them to achieve a perfect score on the BSI transition assessment scorecard and resulting in their ISMS being used as an exemplar by external auditors.

The client: A key digital enabler for UK Local Authorities

Govtech Solutions, a Netcall company, is a trusted UK provider of digital process automation solutions for local authorities. Govtech’s expertise helps councils maximise return on investments in online services and CRM systems. Their solutions automate over 43.5 million digital transactions annually, supporting councils that collectively manage 5 million dwellings and collect over £10 billion per annum in Council Tax and Business Rates income.

Customer need: Mitigating business risk with expert ISMS implementation and securing viability through ISO 27001 certification

Govtech faced an urgent, contractual requirement to achieve ISO 27001 certification to secure new contracts and protect sensitive public data. Failure to obtain compliance would have severely limited their business opportunities and threatened long-term viability.

Their primary challenge was a lack of internal expertise and resources to successfully assess their current cyber maturity and implement a comprehensive Information Security Management System (ISMS) capable of meeting the rigorous demands of the standard.

Our solution: Expert, end-to-end ISMS implementation guidance tailored to Govtech business objectives

Airbus Protect provided expert consultancy through a local dedicated resource. Our solution delivered initial ISO 27001:2013 certification following a detailed gap analysis, leading to the design and implementation of a bespoke ISMS. This included comprehensive document creation, risk assessment, and the provision of an internal audit programme.

This same expert guidance facilitated a successful, early transition to the challenging ISO 27001:2022 standard. Govtech became the first company to score 100% on the BSI transition assessment scorecard. Furthermore, Airbus Protect established a cycle of continuous improvement, including regular internal audits and continuous support for surveillance and re-certification audits, ensuring the team possessed the requisite knowledge to maintain the ISMS themselves.

Customer benefit: Best-in-class ISO 27001 certification, operational resilience, and enhanced market reputation

Airbus Protect UK successfully enabled Govtech to achieve and maintain ISO 27001 certification, transforming their security posture from a non-compliant state to ‘best in class’.

• Sustained growth: Achieving certification met critical customer contractual requirements, providing a platform for sustained business growth and the securing of new contracts.
• Best-in-class security: Govtech’s ISMS was elevated to such a high standard that it is now routinely used as an exemplar by external BSI auditors during other organisation visits.
• Operational resilience: The effective ISMS ensures compliance with regulatory changes and significantly increases resilience against evolving cyber threats, reinforcing Govtech’s reputation for quality, efficiency, and reliability.