Security & Audit Readiness
Technical preparation and continuous improvement of environments subject to TISAX, ISO 27001 and customer security requirements — across identity, devices, evidence, backups and monitoring.
Context
Environments operating under TISAX, ISO 27001 and customer security requirements needed consistent technical controls and evidence — prepared and maintained over time, not assembled at the last minute.
Challenge
- Controls and evidence spread across many systems and owners.
- Device compliance and identity controls to keep consistent.
- Backups, physical and vendor controls to evidence.
- Audit readiness maintained continuously, not just before an audit.
My role
Technical contributor for security and audit readiness — preparing and improving the environment, not acting as a certification authority.
Responsibilities
- Identity controls
- Device compliance
- Evidence collection
- Security documentation
- Backup controls
- Physical & operational security
- Vendor controls
- Security monitoring
Architecture
- Identity and privileged-access controls aligned to requirements.
- Device compliance enforced through endpoint management.
- Evidence and documentation organized so it is audit-ready.
- Backups, physical and vendor controls maintained and monitored.
Fragmented
- Controls and evidence spread across many systems and owners.
- Device compliance and identity controls to keep consistent.
- Backups, physical and vendor controls to evidence.
- Audit readiness maintained continuously, not just before an audit.
Connected
- Identity and privileged-access controls aligned to requirements.
- Device compliance enforced through endpoint management.
- Evidence and documentation organized so it is audit-ready.
- Backups, physical and vendor controls maintained and monitored.
Project lifecycle
- 01
Requirements
Security and audit requirements identified.
- 02
Controls
Technical controls implemented.
- 03
Evidence
Evidence collected and documented.
- 04
Monitoring
Controls monitored for effectiveness.
- 05
Improvement
Continuous improvement maintained.
Implementation
- Controls implemented and verified across identity, devices and backups.
- Evidence collected and documented in a maintainable structure.
- Monitoring used to keep controls effective over time.
- Continuous improvement rather than one-off remediation.
Documentation & handover
Operational and project documentation were prepared as part of delivery, with handover and acceptance support included where in scope — so the environment can be operated, audited and improved after go-live.
Client names and selected implementation details are intentionally anonymized. Presented as technical preparation and improvement, not certification.
Outcome
Environments kept in a continuously prepared, well-documented state against TISAX, ISO 27001 and customer security requirements.
Related projects
PAM360 · Public-sector delivery
DeliveredPrivileged Access Management Implementation for Liberecká IS, a.s.
Coordinated the complete technical delivery of a ManageEngine PAM360 privileged-access solution under public-procurement requirements — from vendor communication to deployment, documentation and handover.
Identity · Automation
DeliveredGlobal Identity & Employee Lifecycle
Designed and implemented a centralized employee-lifecycle model connecting identity, devices and applications — replacing manual operations with automated, auditable flows.