Use Case 1

Within India’s power utility eco system, the load dispatch centres (LDC) play a very critical role in balancing between demand & supply of power and maintaining the GRID frequency. The dispatch centres also look after the commercial aspects of power trading and defining the route of inter & intra state power flow. The Load dispatch network of India hierarchically starts from National Load Dispatch Centre as central control point and goes down to the state load despatch centres. As a regulated entity, the LDCs are mandated to implement ISO 27001 covering their core and support business processes and conduct thorough VA & PT of their IT & OT infrastructure.

Zettawise did the ISMS implementation related consulting and training for one of the State Load Dispatch Centres (SLDCs) of India and conducted the VA & PT of their IT and OT infrastructure. Due to proper execution of all prerequisites, that SLDC got certified as ISO 27001 compliant power utility and subsequently declared as national critical information infrastructure by Ministry of Power.

Use Case 2

As per the guideline of the power sector regulator of Govt of India, all power utilities (irrespective of size, capacity, and complexity) need to take a risk-based approach to ensure their cyber immunity. It is therefore mandated to assess the risk related to people-process-technology at strategic-tactical & execution level.

Zettawise consulting ran capability development program for the senior executives and leadership team of Grid India w.r.t risk assessment and mitigation. One of the emphases of the program was to enable Grid India workforce to comply with sectoral regulations and global good practices for cyber security.

Use Case 1

The Hospital Information Systems of one of the renowned hospitals of eastern India was under attack of Ransomware. The Radiology department of the hospital and couple of other associated processes were nonfunctional for more than 5 days.

The Incident Response (IR) team of Zettawise helped the organisation to come out from the crisis scenario by prevention; detection and analysis; containment, eradication, and recovery of the affected systems and restore the normal hospital operation and continue with uninterrupted healthcare services.

Use Case 2

One of the largest hospital chains of India was in a process of operations expansion with higher capabilities of patient care services covering greater geo-locations. While seeking for investment from potential sources, the investor asked them to comply their business operations with Information Security Management System and Personally Identifiable Information Protection System.

Zettawise was awarded with the contract to give consultancy services for implementing those two management systems across all the locations of the hospital and get the system certified by the competent authority. The work was also included conduction of VA & PT of the ICT infrastructure of the hospital and impart training to the work force of the hospital. On completion of the entire exercise the Hospital got certified with ISMS & PIMS by world leading certification body British Standard Institution (BSI).

Use Case 1

One of the India based software development organization catering to the market of Rural & Cooperative Banks of India through their Banking software was suffering multiple instance of cyber attacks disrupting the functions of their customers.

Zettawise team had done a thorough cyber security posture assessment and conducted VA & PT of their banking application. The assessment criteria were further aligned with ISO 27001 & PCI DSS 3.0 requirements. Later the system was independently assessed by SGS India and certified with compliance assurance.

Use Case 2

The Finance Sector of India in highly regulated and the cyber security posture of the technology infrastructure and with the processes and operating resources are guided by master direction of Reserve Bank of India. This is mandated that all Banks of India shall comply with the master direction and keep reporting their compliance to the competent authority periodically.

Zettawise GRC advisory team implemented all the necessary controls, conducted IS audit per the master direction. The outcome of the entire activity helped the bank to comply with regulatory requirements.

Use Case 1

All state data centers of India are national critical information infrastructures (National CII). CII needs extra digital immunity to protect the information of national interest. The TTPs of protection of CIIs are governed by the country's nodal agency. As per guideline from nodal agency, all CIIs shall align their security & service management systems with ISO 27001 and ISO 20000.

Zettawise GRC advisory team served of the State Data Centers of India to comply with the ISO 27001 & ISO 20000 certification requirements. Post deployment, the SDC has successfully maintained it's ISO certificates without any major non-conformance.

Use Case 2

Protection of the interest of citizens of the country is the most important responsibility of all Law & Enforcement Agency. City Police plays the most critical role as a front-ender. Its a herculean task for them to combat with ever emerging issues of the society, especially if CYBER CRIME become the key contributor.

Team Zettawise got an opportunity to help one of the A-1 City Police HQ of our country to identify their cyber weakness with respect to people-process-technology and mitigate the identified risks by adaptation of appropriate controls. The work included architecture review, VAPT, TPRA and testing of city surveillance system.

Use Case 1

Conducted breaking point analysis for a major steel manufacturing company through cyber range simulations

A leading steel manufacturing and casting company engaged our team to conduct comprehensive breaking point analysis of their IT infrastructure through advanced cyber range data classification workshops and structured red and blue team exercises. The engagement involved simulating real-world cyber-attack scenarios against their enterprise networks, business systems, and corporate IT environment to identify critical vulnerabilities and determine failure thresholds under various threat conditions. Through intensive red team penetration testing combined with blue team defensive responses, we mapped the company's cybersecurity resilience across their IT landscape, establishing clear breaking points where business operations and data integrity could be compromised.

The data classification workshops enabled systematic categorization of their digital assets by criticality and exposure risk, while the cyber range environment provided a safe testing ground to push IT systems to their limits without impacting live business operations. This comprehensive analysis delivered actionable intelligence on infrastructure vulnerabilities, recommended security hardening measures, and established incident response protocols that significantly enhanced their overall IT security posture and business continuity capabilities.

Use Case 2

IT As-is Posture Assessment for Japanese Industrial Gas Company

Our team conducted a comprehensive IT As-is Posture Assessment for a leading Japanese industrial gas and diversified chemicals conglomerate's Indian subsidiary, evaluating their current IT infrastructure, security controls, and operational capabilities across their manufacturing and distribution operations. The assessment involved detailed analysis of their network architecture, server environments, database systems, application landscape, and cybersecurity frameworks to establish a baseline understanding of their existing IT posture and identify gaps against industry best practices. Through systematic documentation of hardware and software assets, security configurations, data flows, and business-critical systems, we mapped their entire IT ecosystem while assessing compliance with regulatory requirements and corporate governance standards.

The engagement provided the organization with a detailed current-state analysis, risk assessment matrix, and strategic recommendations for infrastructure modernization, security enhancement, and operational efficiency improvements that would support their expanding industrial gas operations across the Indian market.