Imperium Solutions: Building the Concept of Information Security and Privacy in India

Tasneam Vasowala,  Head- GRC Information & Security

Tasneam Vasowala
Head- GRC Information & Security

The inability to execute full potential at work often leads to severe dissatisfaction for intelligent minds. This is what happened to Tasneam Vasowala 10 years ago when she was working as a Project Manager for a software company. She felt that her capabilities not optimally utilised and finally decided to quit and start some-thing on her own. In 2008, she along with MurtazaLaheri founded Imperium Solutions, a partnership firm focused on providing consulting services on information secu-rity, governance, risk and compliances. Imperium Solutions aims to partner with its clients to build and implement appropriate Information Security and Privacy controls. Imperium Solutions is empanelled with Cert-IN. Professionals here have rich domain expertise across various industry verticals as well as the multidimensional skills required to meet the ever changing business needs of clients. “Our Its unique blend of customer focus and consistency in delivering solutions of the highest quality provides a competitive edge to our clients”, says Tasneam Vasowala, Head-Information Security and GRC, Imperium Solutions.
Services Rendered
Imperium provides services to organisa-tions with the implementation of Informa-tion Security Management Systems (ISMS) according to the ISO 27001 security
standards, helps in the implementation of Privacy Management Systems in accordance with the ISO 29100 standards, assists in implementing Business Continuity Manage-ment Systems(BCMS) according to the ISO 22301 standards as also provide services regarding IT Service Management (ITSM) following the ISO 20000 standards

The General Data Protection Regulations (GDPR) that have been enforced by the European Union in May 2018 have been instrumental in ensuring that corporations dealing with personal information take notice and comply to it, especially if dealing with EU citizen data.

“In addition to these, render help regarding processes and controls with the GDPR requirements, meet PCI-DSS Compliance requirements for clients and also regulate the processes and controls to comply with the Reserve Bank of India (RBI) circulars on information security, cyber frauds and customer awareness”, says Tasneam.
Technology act and Unique Identification Authority of India (UIDAI) security guidelines.”

“We also conduct vulnerability assessment and penetration testing, web application audits, mobile application assessments, source code reviews, network and infra-structure audits.

Murtaza Lahari, Director adds, “In line with the others, we provide services regarding the processes and controls to comply with the Insurance Regulatory and Development Authority of India (IRDAI) security requirements, implement controls and measures to comply with the IT-Grundschutz requirements and conduct
audits to evaluate the compliances of an organisation against Information.
Being a Cert-IN empanelled firm, we have also worked with various government organisations in these areas” says Tasneam.

It has been 10 years since the inception of Imperium Solutions and the growth that has been encountered promises a bright future

Growth and Future Prospects
It has been 10 years since the inception of Imperium Solutions and the growth that has been encountered promises a bright future. It has worked with various clients all across the country including some in the rural areas. It has worked with client businesses from the USA, Kenya, Belgium and UAE. Outside India, it has established presence in collaboration with another company. Expressing the good will for the company and the future that they have planned for it, the managing partners conclude, “We want to continue with our good works in the areas of ISO standard implementation, security audits and GDPR consultancy services and establish a strong presence across the country. We have 40 clients at present and plan engage with more customers while increasing our service portfolio. We are also looking at expanding our services to the corporate training sector where we will formulate trainings focused on information security and data privacy, certification such as CISA and customise training programs as per client requirements. We are also gearing up to support organisations to comply with India’s PDPA Act.