The client’s information security unit needed to evolve to keep up with rapid digitalization and the company's growing business ambitions. With increasing external challenges like threats, regulations, and vendor demands, Kopenhagen Konsulting was called in to lead a comprehensive reorganization of the global information security function.

Kopenhagen Konsulting kicked off the project with a series of management workshops to define the focus, desired outcomes, and necessary resources. This led to several critical changes in the organizational model. First, the governance, risk, and compliance area was rebranded and restructured to better align with the company's needs, introducing a security partner engagement model with enhanced managerial capacity. Next, we restructured the cyber defense center and technology area to support increased cloud adoption, the need for greater automation, and AI capabilities. We also implemented a product-management approach to oversee core security technologies. Additionally, a new division was set up to drive strategic initiatives and connect with larger IT and digital programs across the company. Finally, we established several centers of excellence to centralize expertise, focus efforts, and ensure consistent global impact.

The reorganization was well-received across the company and led to several key improvements:

• Information security was transformed into a business enabler.
• The organization and its capabilities were scaled to meet rising business demands.
• Segregation of duties and responsibilities was enhanced to effectively guide the security journey.