This website uses cookies to ensure you get the best experience on our website.
Learn More

Book a Consultation

Book a Consultation

JSC Consultants leverages web-based custom development solutions to automate risk and action management and help organizations stay ISO 27001 compliant.

Download the Case Study
  JSC Consultants
  • Advisory services

Client Business Background

JSC Consultant Solutions Ltd is a consulting services company helping organizations with the design and implementation of management systems such as ISO 27001, ISO 9001, ISAE 3402, SOC1, SSAE 16, SOC2 & ISO 20000. They also do assessment work for the British Standards Institution, one of the leading certification bodies. They provide tools and automation software to other organizations which helps them increase their revenue, lower their cost, establish a platform for growth or prepare for M&A.

As a leading consultancy firm, its main aim is to provide a vast range of ISO certification services that help the client get certified to one of the coveted ISO standards. Our client was already having Office 365 license and using the platform for sharing documents with its clients who were not essentially SharePoint users.


The client was already having a solution to manage risk and action using SharePoint. But it was not a centralized system. Every time the JSC consultants wanted to help their clients have access to the RMS, they created separate access for each account. The process was time taking and cumbersome.

  • They wanted to create a comprehensive ISO 27001 Risk Management tool that could help their customers to manage any kind of risk, action, and documents without wasting time and effort.
  • The customers could download the add-in from Microsoft AppSource and easily install on their environment. It could be a plug-in and play kind of RMS add-in.
  • The tool should also help them implement ISO 27001 in their organization and help them stay compliant.
  • They also wanted to have this tool run on Office 365 SharePoint environment, on either customer’s Office 365 environment, or in case they don’t have, JSC could let them access their environment.
  • They also wanted to streamline the document sharing process for every customer.


Solution Strategy

We helped the client develop an online Microsoft SharePoint add-in for managing Information Security Management System (ISMS). The add-in could be easily downloaded from AppSource and hosted on their customer's environment or hosted on JSC's environment. The client’s customers purchased the add-in within a subscription package, install in their environment and use instantly.

Along with major functionalities like email notifications, reminders, reporting dashboards, bulk data management (import/ export) and information search options, the add-in had four major modules:

The Risk Management Module

The Risk Management Module

The Risk Management module helps to determine risks based on assets, threats, and vulnerabilities. Users can add/ edit a new type of risk with their owners’ detail. They can score the risks based on likelihood and impact and then select controls to mitigate any risks that are not accepted. The module helps to manage the risk treatment plan as well.

The Action Management Module

The Action Management Module

The Action Management module helps users to log a nonconformity, an incident, an event, an opportunity for improvement, or an action from the management review. Users determine root cause, corrective action, owners, plans, and deadlines from this module.

The Recurring Action Management Module

The Recurring Action Management Module

The Recurring Action module helps users with all those recurring tasks that are built into any ISMS or QMS e.g. running an annual management review or a quarterly business continuity test exercise. In this module, users can set the action once. Action owners will get timely reminder emails to perform the action. It also enables users to record the outcome of the action (so one has evidence to show to the auditor) and once an action has been completed a new action will be set after the said frequency.

The Reporting Dashboard Module

The Reporting Dashboard Module

There is an elaborate reporting dashboard that gives detailed insights on users' ISMS. Users can check detailed statistics on reports like:

  • Overdue risks
  • Root cause analysis
  • Age of actions
  • Overdue risk/actions by the owner
  • Open/ close/ overdue risks and actions
Document Management simplified

Document Management simplified

As the add-in is built using the SharePoint platform, users get the advantage of its elaborate document management features which makes it easy to manage all the vast data and documents associated with the user’s ISMS or QMS. Help Instructions and other important forms are also easily accessible within this comprehensive tool.

Bulk upload/ download of Risk and action data

Bulk upload/ download of Risk and action data

The add-in allows users to upload excel files with complete risk or action data in a predefined format so bulk data can be uploaded into the system all at the same time. Similarly, bulk download of this data can also be managed using this tool.

Email notifications and reminders

Email notifications and reminders

The various modules allow users to set due dates and review dates with automatic email reminders to action owners.

Searching information

Searching information

Another important thing which is faced by many organizations and its people is finding the right information easily. The add-in allows you to search easily with name/ detail related to any risk, action, or recurring action so users get the required information without scrolling through pages of data.


Our client – JSC consultant got an automated SharePoint tool that could help several of its customers implement ISO 27001 Risk Management System seamlessly into their systems.

  • The client got a centralized, add-in where Risks, actions, and documents all could be managed easily.
  • The client could earn higher revenue and customer satisfaction through increased trust.
  • The consultants saved efforts in installing the application on every customers’ environment. Now JSC’s customers- purchased the add-in from AppSource and start using instantly.
  • They saved time, money, and efforts to manage and implement ISO certifications across their several customer accounts.
  • Searching for the required information was easy than before.
  • The client made better use of their Office 365 license thus making it a cost-effective solution.
Information Page

Information Page



Healthcare Analytics and its impact on Hospital Performance

“The Global healthcare analytics market is projected to reach USD $50.5 billion by 2024..

Compare the Top BI Tools: Power BI vs Tableau vs Qlik vs Domo

How smart are your organizations’ decisions? Do you have the right information..

Why your Nonprofit need Data Analytics and BI dashboards?

Data has the potential to become a powerful addition to the work you do, providing..

Predictive Analytics for Policy Cancellation

We helped a leading insurance company to leverage power of Predictive Analytics to help them reduce policy cancellation rates.

BI Enablement for NPO

We helped a leading healthcare and family center NPO with custom BI dashboards and reports to help them with data visualization and timely reports by integrating with their existing EHR system.

Data Visualization for Healthcare

We helped a leading Non-Profit Healthcare center with custom BI dashboards and reports to help them with data visualization and timely reports.

Power BI: Powerful ways to make your data speak

Every company needs feedback. From the fledgling entrepreneur to the large Fortune 500 companies..

Contact Us

Use the contact form below for any questions or requests related to our services.

Loading bar Processing...