The key concept of Information Security Management System (ISMS) for an organization is design, implementation and to maintain a coherent suite of processes and systems for effectively managing information accessibility. As with all management processes, an ISMS must remain effective and efficient in the long term, adapting to changes in the internal and external environment. ISMS involves providing independent evaluations of an organization's current systems, policies, procedures, and practices for safeguarding electronic information from loss, damage, unintended disclosure or denial of availability. As a part of Power Reform Process, the Electricity Act, 2003 was passed by the Central Govt. This was followed by Gujarat Electricity Industry (Re-organization & Regulation) Act, 2003 passed by the Govt of Gujarat to restructure the electricity industry with an aim to improve efficiency in management. In order to centralize the control of GUVNL's IT assets, team of ISMS consultants was approached. This team carried out Gap Analysis of existing IT infrastructure of GUVNL to find out security gaps. The recommendations for risk mitigation of existing security gaps were submitted and presented to GUVNL, wherein recommendations of top priority-high risk observations were suggested for implementation of Active Directory Services, Enterprise management system including Desktop, Server & Network Management Solutions, Firewall & Intrusion Detection System (IDS) Solution, Anti-Virus Solutions, etc.
Project Head: Rajesh A Shah
Deployment Location: Vadodara, Gujrat
Team Size: 110
Tech Used: MS Active Directory CA Unicenter DSM solution IBM-ISS NIDS, HIPS Microsoft ISA firewall with web chain
Expected life: 5 years