Select Page

[Case Study] Figured chooses AMARU for SOC 2 and SOC 3 Compliance

Figured is a farm financial management software company that is helping farming teams across New Zealand, Australia, the UK and the United States better manage the profitability of their operations. They believe farmers, bankers, accountants and rural advisors should be working together, collaboratively planning for a farm’s future using real-time financial information, so they built a solution, integrated with leading accounting software and partnered with global banks.

The challenge

Figured were facing high demand with third party due diligence and security expectations from partners. Working with financial institutions across the globe, they needed a security accreditation to give their partners and customers confidence in their security.

Figured knew that a SOC 2 attestation was what they needed but they didnt know how they benchmarked and if they had the bandwidth and security expertise to achieve it. Being a young, dynamic company, they were looking for an organisation that not only had security expertise but could work pragmatically and fit into their company culture.

 

The solution

  • Managed Security Service focusing on achieving SOC 2 Type 2 and SOC 3 compliance
  • Ongoing Security Awareness Training
  • Ongoing monitoring of devices for malicious activity
  • Advisory on all aspects of security including improving security of a customer platform

 

AMARU were fast moving, able to come onboard and quickly understand the business problems and assimilate with the culture. A SOC 2 readiness assessment was conducted so Figured could understand the size of the project and the resources needed to achieve their goal.

A roadmap was put in place and the project team was established to initiate all the controls necessary to achieve SOC 2. It was not a small feat, but with AMARU leading the way and utilising real time communication, the project didn’t overload the team and significantly lowering the stress on the leadership executives.

While the focus of the engagement was to achieve security accreditation, AMARU were still involved in other projects in the company to ensure ‘security by design’ was embedded. Because AMARU understood Figured, it’s market, customer and partners, it was able to recommend security controls that not only ‘ticked the box’ but also aligned with their ways of working and future activities.

 

More Outcomes

Figured achieved SOC 2 compliance on time and within budget. AMARU were able to assist Figured with keeping to budget by negotiating rates with auditors and technology providers. A year following SOC 2 compliance, Figured achieved SOC 3 compliance. Having these security accreditations has enabled Figured to win new businesses and maintain trust with their current clients.

Now that Figured have their accreditations and controls in place, AMARU have continued working with them to ensure the maturity around those controls and provide advisory for the future plans of the business. Having had a seamless relationship for over 3 years now, AMARU now also supports Figured with penetration testing needs, giving Figured ongoing confidence in the security of their platform.

“Amaru bought huge value to our business, just having that level of expertise we were lacking here at the start of the project, bought so much to the table.”

CONFIDENTIAL NAME PROVIDED UPON REQUEST

Download the case study

————————————————————————————————–

About AMARU

AMARU is New Zealand’s leading information security and compliance service provider, offering end-to-end managed cyber security services across Australia and New Zealand. Contact us to find out how AMARU can help you manage and maintain your cyber security posture!