Maitland-based professional services firm, Mitec, was recently engaged to conduct an audit of the OPAL travel card environment, on behalf of Cubic Transportation Systems.

David Wheeler, lead auditor and implementer for ISO27001, undertook the audit to review the Information Security Management Systems (ISMS) and Business Continuity Systems, to ensure the systems are manageable and linked to business objectives.

“The audit was both extensive in time and locations that were required to be visited and the security requirements reviewed,” David said.

“Implementing an ISMS based upon the ISO27001 Information Security Standard is an important step in implementing a suite of controls to ensure that a company’s business operations are functioning with appropriate attention to confidentiality, integrity and availability (the three cornerstones of Information Security).”

“This in turn is to ensure that customers can have a level of assurance that your operational systems are functioning with a focus on your business security requirements.”

Mitec was selected to conduct this audit due to David’s experience with information security and his expertise in conducting and leading audits. David indicates that his approach to auditing is business focused and about delivering value rather than ticking boxes.

“I found the audit for the OPAL card system both informative and rewarding, and was able to provide improvement opportunities that assisted with the overall security framework and facilitated the eventual certification of the system.”