ICL Services
Services
Services
All services it helper
Information security
Information security
Information security
Information security 13 ICL SOC: Identification and response to cyber threats
Comprehensive Information Security Audit
Information Security Audit: Monitoring Compliance with Legal Requirements
Penetration Testing (Pentest)
Design, Implementation, Migration, and Maintenance of Information Protection Tools
Services and Facilities
Technical Support and Maintenance of Hardware and Software
Digital Services
Internet of Things
Smart Business Process Automation
Digital transformation
Digital transformation
Digital transformation 13 Intelligent Transport Systems (ITSs) MONITORING OF THE OPERATION OF BUSINESS APPLICATIONS Virtual Reality/Augmented Reality Intelligent automation via RPA platform Development, Implementation and Support for IoT Solutions
Artificial Intelligence and Data Analytics
Implementation and Migration
Migration Of Infrastructure, Configurations, Applications, Data, And Users
Implementation Of IT Solutions
IT And Digital Consulting
Inspection and Consultation
Gathering and formalizing requirements (system and business analytics)
Managed Services
Operation of Datacenter and Cloud Infrastructure
Workspace Administration
Software Development
Software Integration
Dedicated specialists
Agile outstaffing
Bespoke Software Development
Software support and development
Software testing
Application modernization
Products
COLIBRI (Automated Workstation)
SERVICE AUTOMATION TOOL
Projects
Company
Company
ICL Services
History
Social responsibility
News
Video
Career
Career
Career
Career in ICL Services
Career in ICL Services
Career in ICL Services Advantages of work in ICL Services
Vacancies
Vacancies
Vacancies System administration Infrastructure solutions development Business design
Contact us
Callback
ru
en

KVART

As a producer of over 7000 items of rubber products for all sectors of the economy, Kamsko-Volzhsky Joint-Stock Company of Rubber Technology "KVART" is one of the largest companies in its field.

In accordance with the requirements of 187-FZ "On the Security of the Critical Information Infrastructure of the Russian Federation", the company had to tie the plant's critical information infrastructures (CIIs) to significance criteria, their values, and either to assign a significance category or decide that there is no need to assign any significance category to them.

To comply with legal requirements and regulatory guidelines, the company needed a contractor who could promptly review, identify, and categorize CIIs.  

Key Challenges

  • Review, identify and categorize CIIs in order to comply with 187-FZ;
  • Develop terms of reference for the creation of a system ensuring information security of CIIs.
Read more about the project Задать вопросAsk a question
Solution

Implemented our solution

  1. At the preparatory phase, ICL experts assembled a working group, developed a work schedule, and approved it with the customer.

    Next, the experts reviewed the company's IT infrastructure, detected business processes and identified critical processes among them — management, technological, production, financial, economic, and others which would lead to negative consequences if interrupted or terminated. For example, if a computer incident would result into harmful substances emitted into the environment or damage to life and health of people.

    Based on identified critical processes, ICL experts defined several dozens of CIIs — automated control systems supporting these processes. The list of CIIs to be categorized was sent to FSTEC of Russia.

    Then the experts initiated assessment of possible negative consequences at each CII according to the following criteria:

    • Social significance
    • Political significance
    • Economic significance
    • Environmental significance
    • CII significance to ensure national defense, security and public order
    After examination, verification of documentation and detailed analysis of the scale of possible consequences for each CII, ICL experts decided to assign one of three significance categories to CIIs or resumed that there is no need to assign any significance category to them.

    Documented details on the results of assigning significance categories to CIIs were also sent to FSTEC of Russia. 

Results

  • The terms of reference for the creation of a system for ensuring information security of CIIs were developed.
  • The categorizing assignment was completed in less than two months and in full compliance with the requirements of the legislation of the Russian Federation so that the customer was able to timely deliver categorization results to FSTEC of Russia.
  • All stages of CIIs categorization were thoroughly documented, allowing the customer to avoid claims from the national regulatory authorities.

Services provided

Drop us a line

Contact us

Request a call

Name*
Phone*
Email*
Company*
Please see the Privacy Notice further information regarding your rights.

I have read the Privacy Notice and consent to the processing of my personal data

icl-services.com uses cookies, and by continuing browsing the website you give your consent to the use of cookies by us. Otherwise you should leave our website after reading this.
OK

Ask a question

Name*
Email*
Company*
Position*
Phone*
Message*
Please see the Privacy Notice further information regarding your rights.

I have read the Privacy Notice and consent to the processing of my personal data

Request a call

Name*
Phone*
Email
Company*
Please see the Privacy Notice further information regarding your rights.

I have read the Privacy Notice and consent to the processing of my personal data

Up