Ensuring ISO 27001 compliance with daily vulnerability scanning and annual penetration testing.

As a rapidly growing software company,  Jigsaw places the highest importance on data security. With a web application used by all its customers, protecting both internal systems and customer data is critical.

The business had already achieved Cyber Essentials Plus and ISO 27001 certification and regularly conducted penetration tests. However, traditional penetration testing proved to be resource-intensive, with time-consuming remediation efforts. More critically, Jigsaw lacked ongoing visibility of vulnerabilities between test cycles, leaving them exposed to potential threats. A more efficient and continuous approach to risk management was required.

Melius CyberSafe conducted a comprehensive penetration test to identify potential security risks within the company’s infrastructure. Its CREST-accredited security experts delivered a detailed report outlining key findings and prioritised remediation actions.

Following the assessment, the company implemented the CyberSafe platform, gaining 24/7 visibility into vulnerabilities across critical security controls. This enabled proactive remediation and significantly reduced exposure to emerging threats.

The penetration test provided critical insights that enhanced the security of Jigsaw’s web application. It also supported ISO 27001 compliance, strengthening alignment with the company’s internal security policies.

With the implementation of CyberSafe, Jigsaw now benefits from daily vulnerability monitoring, complete with severity ratings and business impact assessments, enabling real-time threat management rather than waiting months between penetration tests.

Adoption of the CyberSafe platform is expected to significantly reduce the time and effort required for future remediation activities.