Taking no chances with customer data

Ensuring ISO 27001 compliance with daily vulnerability scanning and annual penetration testing.

Jigsaw Create Logo

At a glance

Challenges

Penetration test needed for ISO 27001 compliance.

Spikes in unplanned workload.

No visibility of vulnerabilities in between penetration testing.

Benefits

Enhanced web application security and ISO 27001 compliance.

Continuous threat visibility through real-time vulnerability monitoring.

Reduced effort and cost in managing future security remediations.

Objectives

As a rapidly growing software company,  Jigsaw places the highest importance on data security. With a web application used by all its customers, protecting both internal systems and customer data is critical.

The business had already achieved Cyber Essentials Plus and ISO 27001 certification and regularly conducted penetration tests. However, traditional penetration testing proved to be resource-intensive, with time-consuming remediation efforts. More critically, Jigsaw lacked ongoing visibility of vulnerabilities between test cycles, leaving them exposed to potential threats. A more efficient and continuous approach to risk management was required.

Solution

Melius CyberSafe conducted a comprehensive penetration test to identify potential security risks within the company’s infrastructure. Its CREST-accredited security experts delivered a detailed report outlining key findings and prioritised remediation actions.

Following the assessment, the company implemented the CyberSafe platform, gaining 24/7 visibility into vulnerabilities across critical security controls. This enabled proactive remediation and significantly reduced exposure to emerging threats.

 

Benefits

The penetration test provided critical insights that enhanced the security of Jigsaw’s web application. It also supported ISO 27001 compliance, strengthening alignment with the company’s internal security policies.

With the implementation of CyberSafe, Jigsaw now benefits from daily vulnerability monitoring, complete with severity ratings and business impact assessments, enabling real-time threat management rather than waiting months between penetration tests.

Adoption of the CyberSafe platform is expected to significantly reduce the time and effort required for future remediation activities.

“We are extremely pleased with the high level of detail included in Melius CyberSafe's penetration test reporting, making it easy to remediate vulnerabilities. The continued daily scanning means we are now aware of vulnerabilities as they appear and it’s nice to know there won’t be as much work next year.”

Richard McLaughlin - VP Technical Operations

About the Customer

Jigsaw is a London-based software company that empowers professionals in legal, financial, and professional services to create sophisticated, data-rich diagrams with speed and precision. Their platform enables users to visualise complex transactions, corporate structures, and business processes up to 40 times faster than legacy solutions.