GALA GROUP

Coordination and implementation on several continents

With its numerous international locations spread across three continents, Gala Group faced a very special challenge. It had to implement and maintain an ISMS of equal quality for numerous geographically and legally separate entities at all locations.

The challenge lay in creating a central overview and consistent documentation for all entities in various countries. Risk management and security incident handling in particular had to be handled centrally so that proactive risk management could be implemented at all locations in the future.

‍

Customized IT-Grundschutz modeling

Athereon GRC enables Gala Group to centrally record and manage all information relevant to IT-Grundschutz across its various legal entities. The shared workspaces within Athereon GRC ensure a consistent approach across the various teams.

Thanks to automated document management, all employees have access to the documentation and guidelines relevant to the audit at any time. The tool's automated workflows further increase the efficiency, predictability, and documentation of GRC/compliance processes.

‍

Centralized administration and control

The implementation of Athereon GRC helped Gala Group establish centralized management and control of security standards as well as compliance.

In particular, the real-time review of standards and risk management now make it possible to centrally monitor the many different legal entities. This allows the individual locations to benefit from each other's learnings and processes.