Protecting everyone from risk

Our suite of cybersecurity technologies delivers brand protection and visibility to every network segment, device and appliance whether virtual, in the cloud, or on-premises.

The suite’s framework was developed to address our company’s and clients’ need to protect confidentiality, integrity and availability of our information systems and clients’ business-critical information.

With the increased risk of cybersecurity threats, our clients wanted to know if their information will be safe and whether Lithocraft has cyber and information security policies in place.

With assistance from experts in the field of cybersecurity, Lithocraft has adapted the ISO/IEC 27001 cybersecurity framework. This framework consists of international standards required to manage information systems.

By completing the risk-based processes to identify security threats and impacts on our information system, we were able to put policies and controls in place to mitigate security risks and protection from cyber-attacks.

We have also successfully established an Information Security Governance Committee (ISGC) to oversee the policies and procedures to address our cybersecurity. Members of this committee include company directors and department managers to ensure that we address the security of business-critical information on behalf of our clients.

The committee undertook the process of rating each electronic or physical system that we have in place, the department/persons responsible, and whether they are low, medium or high-risk data and work out the maximum tolerable downtime.

Lithocraft identified where the efficiencies and deficiencies were in our systems. Any deficiencies were recorded in our Information Risk Register and this enabled us to improve and rectify designated areas – be it electronic or physical data handling.

As a result, Lithocraft has formulated the highest level of cybersecurity protection and mitigation of cyber threats. We have also implemented a management framework and associated

Policies, standards and procedures which cover the following key aspects:

• Human Resources Security
• Identity and Access Management
• Physical and Environmental Security
• IT Operations Security
• Network Security
• Information Security Issue Management
• System Acquisition and Development
• Supplier Security
• Business Continuity Management
• Acceptable Use

Each of these policies contain guidelines and procedures on how Lithocraft effectively manage security within these different areas. These policies are available for the public domain.
Lithocraft has learnt, grown and developed more secure platforms, procedures, and policies to combat the ever-growing cyber threats to protect our information systems and our clients’ business.