Wotton + Kearney Simplified Risk Management
Wotton + Kearney accelerated compliance and simplified risk management with StandardFusion, streamlining ISO certification and reducing manual effort through automation and a centralized platform.
Wotton + Kearney Fast Facts
Founded in 2002, Wotton + Kearney (W+K) has grown from two partners to be one of Australia's undisputed leaders in the provision of legal services to the insurance industry with hundreds of specialist insurance lawyers across offices in Sydney, Melbourne, Brisbane, and Perth in Australia, and Auckland and Wellington in New Zealand.
Industry
Law Practice
Location
Sydney, Australia
Employees
501-1000
Founded
2002
The Challenge
Wotton + Kearney needed a tool to help with compliance, specifically ISO, and one that could help with risk analysis and third-party assessments. Mahesh Belagali, IT Security Manager, explained "In my past experience working at another company, I had completed an ISO certification using Microsoft Excel, SharePoint, and Jira, and it was very painful. When I joined Wotton + Kearney, I didn't want to go through that same painful journey with multiple, disparate tools, so we looked for a dedicated GRC tool."
"I have seen the arrival of beneficial features that were promised as coming in the pipeline. StandardFusion is adding the right features at the right time. I would definitely recommend StandardFusion."
Mahesh Belagali
IT Security Manager
At
Wotton + Kearney
The Solution
After conducting research and reading online reviews, W+K narrowed the selection down to three options. The team found that StandardFusion has features that meet W+K's requirements as well as their allocated budget. The other solutions W+K evaluated charged a fee for each entry made in the system or the total number of roles added to the tool. Considering this was a new initiative for the organization, they were unsure of how many entries they would make, rendering the overall pricing unknown. "Other highlights include managing controls and StandardFusion's threat library, with predefined threats and accompanying likelihood and impact. We can track all the critical assets and assign threats to each, which eliminates having to manually define them when doing the risk assessment. It's very, very helpful." - Mahesh Belagali, IT Security Manager, Wotton + Kearney
The Results
Once implementation with was completed, the ISO certification process went smoothly as StandardFusion made it easier for the assessors to go through all the controls and evidence mapped to their requirements, saving the team time. "With StandardFusion, auditing becomes easier for the assessor, they're able to see all the responses and evidence to the requirements is in one place, reducing emails back and forth." - Mahesh Belagali, IT Security Manager, Wotton + Kearney Managing compliance using StandardFusion's GRC tool has also been a game changer for W+K, enabling them to schedule recurring tasks such as quarterly checks, with the system automatically sending notifications to the task owner when it's due. Additionally, StandardFusion's flexibility enabled their organization to add custom regulatory frameworks and new policies, including the Australian information security standard CPS 234.
Simplified Audit Management
Flexible Frameworks
Achieved Compliance
Ready to Get Started?
Contact our team today to learn how we can work with your team to build trust.
