The turn of June and July 2019 was an intense time for us. Due to the increasingly dynamic development of companies in the TT Capital Group, it was gradually becoming clear that in the long term it was impossible to maintain a central IMS (which, in addition to ISO9001, ISO20000, and OHSAS also included ISO27001). It was time to act.

We decided that the responsibility for ensuring the security of information (and of other systems) would fall on each of the companies that use it. It was quite a subversive idea for the warm, lazy summer holiday period (indeed, at that time the possibility of travel far exceeded the boundaries of the living room, terrace, and garden, which many of us were happy to take advantage of). A task as lofty as it was ambitious. At our disposal, we had the functioning central system of the TTCG and a great deal of experience gained over the many years of working with it. We only had to use this knowledge, documentation, and existing tools… or, perhaps, could it be better to start from scratch? For some reason, that question kept bothering us.

Evolution or revolution?

An eternal dilemma. In one of my previous articles, “How to efficiently perform a digital transformation in your company?“, I argued that if we do not have a good argument for a revolution, then we should stick to evolution. Then, if we make a wrong decision, going back a step or two is much easier. Well, precisely – that’s if we do not have a good argument. Overall, the task that was facing us required three things:

  1. Defining the scope of IMS that we needed in the organisation – here the choice was simple, because as a provider of programming services we focus primarily on information security.
  2. Analysing the entire IMS and pinpointing documents, processes, practices, and ways of ensuring information security.
  3. Adopting the above in our business needs, organisational structure, and good practices.

Step one was a matter of minutes. A piece of cake. Step two was where the trouble started. The Integrated Management System indeed proved to be substantially integrated. There was no easy and quick way to simply extract just the information security part. The only option was to catalogue all the documents, analyse them meticulously, and then rewrite and adapt them to our needs. No shortcuts. But this made us see the light at the end of the tunnel. If we couldn’t speed up our work by simply incorporating parts of the system, why not use tools that would allow us to implement and supervise the system more conveniently, faster, and more efficiently? We had found the argument for the revolution. The third item on our list began to take shape.

Where Excel fails, Jira excels

It is not my intention to criticise Excel. It’s a great tool, but it does not necessarily give you the level of performance and ease of maintenance we require from our ISMS here at TTPSC. We have been working with the Jira and Confluence systems and using a whole range of extensions for years. Once we analysed the IMS documentation (yes, we did it document by document, sentence by sentence), the structure and content of Information Security policies that will be applied in TTPSC, we had to think about tools. And so:

  • We replaced the document repository (Word, Excel, PDF, and more) in Sharepoint with content posted on Confluence websites – and that solved the issues of versioning, employee access, and control of changes. We rely only on integrated mechanisms available as standard. No encryption. It’s quick, efficient, and there’s no need for any additional tools.
  • Reporting incidents, activities, and other events relevant from the point of view of ISMS – fortunately, this item combines all the standards that were part of the IMS. Throughout the years of IMS operation, TT CG developed a great mechanism for event reporting and management, based on Jira. Each report has its own type (Incident, Improvement Potential, Nonconformity, Action) and a number of attributes to help classify the event, which then enables precise analysis and monitoring. Reports have their life cycle, they can be delegated to specific people, provide records of activity, allow for grouping and merging, as well as many other things, which can all be achieved with Jira’s basic functions. This is a key element of the system.

creating ISO issues in Jira, Transition Technologies PSC

  • Monitoring the effectiveness and measuring the achievement of objectives – a structured form of reporting incidents or activities is fundamental. A manual analysis or reporting of the results of measurements in Excel would be heresy. This must be automated, legible, and accessible online with appropriate permissions. Sounds complicated. Nothing could be further from the truth – the integrated Jira and Confluence mechanisms and a very high degree of integration of both systems can also help here. This is why we have access to the most important indicators and the degree of objective achievement at all times, without even one operation, database query, or macro in excel. We only use filters, reports, macros, and widgets.

ISO statisticks in Jira, Transition Technologies PSC

  • The risk matrix. I saved the best for last. On the web, we can find hundreds of excel templates with samples of a risk matrix. All of them have one thing in common – they cannot be integrated with other parts of the ISMS. Why is that? With 30 or more risks, Excel becomes completely unmanageable. We do not like the look of it. It’s difficult to read the contents of the cells. It’s even more difficult to see the connections between them. And tracking risk activities becomes mental gymnastics. Impossible? And yet. The awesome Jira add-on – Big Picture came to our rescue. Whole articles could be written about the add-on itself, but for our purposes it was the module for risk management that proved invaluable. It allows you to create (and visualise!) a matrix, easily transfer risks between sections of the matrix, and, because each risk is a task in Jira – we can use metadata, links, life cycles, and change history. The icing on the cake is that the risks can easily be linked to their source (design analysis, system implementation, incident), can be filtered and constitute a basis for advanced reports. Quick, simple, and effective.

ISMS Risk Register in Jira, Jira and BigPicture, Transition Technologies PSC

It is worth mentioning that while the analysis of documentation took us weeks, creating these tools for ISMS management turned out to be a matter of… a few days. For one person. The combination of good practices, even better tools, and the gut feeling that old, established patterns can be replaced by something fresh, better, and more efficient, gave exceptional results.

And this is only the beginning…

If that’s the case, then what’s next? Integration More and more integration. Jira and Confluence are accompanied by dedicated systems which analyse reports from partners and providers. Results are automatically reported as actions, incidents, or other events, and these consequently provide us with indicators and reports. The unification of communication and cooperation tools gives you greater control over the processed data. Analysis of the requirements of the ISO standard in terms of monitoring the effectiveness of ISMS pushes us to implement solutions based on the digitisation of processes in Jira. As long as we are guided by security, standardisation, automation, and data integration in these activities, although the system covers new, additional areas with every month, it does not require any additional effort to operate and manage it. After all, this is not about creating a system whose operation will be a mystery in itself and will only hinder the work of production departments. The idea is that the solutions we have developed should create conditions in which the risk of loss of integrity, confidentiality, and availability of data processed by employees becomes increasingly lower. At the lowest possible cost.

_All posts in this category

blogpost
Articles

Document Management System at Jira – digital transformation for government, accounting, office and more

Document System Management is the basis for digitizing business processes. See how it is possible to transfer and archive documents in the Jira system. Learn about the benefits and see screenshots of the solution, as well as sample document flow paths in the company.

Read more
blogpost
Articles

Project Management in Jira Cloud with Structure and Structure.Gantt

Among project management applications, you can find simple tools that address a single employee's needs, as well as comprehensive environments for managing an entire portfolio of projects. Our text is addressed to those who want to bring order to work management, centralize processes and gain a single environment for conducting multiple activities. We present the most important functionalities of the Jira Cloud system integrated with the Structure application and Structure.Gantt from ALM Works.

Read more
blogpost
Articles

Migrating Jira Server to Jira Cloud

20 years after entering the IT market, Atlassian is still one of the world's leading providers of enterprise software solutions - from test and development management applications to agile (or cascading) project management systems to business process digitization capabilities, including administration and ITSM. According to recent data, Atlassian already has more than 200 000 customers worldwide and its market value is estimated at more than $60 billion. In order to achieve and sustain these results, Atlassian must be flexible and adapt to the needs of a changing world. Atlassian is now entering a new era with its customers - the Cloud - and is phasing out its Server-based systems.

Read more
blogpost
Articles

Confluence + Linchpin. A modern and functional company intranet

An intranet improves communication, integrates and gives a sense of belonging. Apart from purely practical advantages, it has a number of assets of a social nature (“social intranet” is also one of the keywords searched in Google). If you are looking for an intranet/extranet that will be functional, intuitive, advanced in terms of functionality and friendly from a visual point of view, we recommend a combination of the Confluence system by Atlassian and Linchpin by Seibert Media.

Read more
blogpost
Articles

System for HR team – recruitment of employees in Jira environment

Electronic recruitment systems and proven recruitment tools are increasingly sought after by professional recruiters and companies, who want to streamline the process of hiring new employees in their organizations. By combining the capabilities of Jira Service Management and Confluence (and proper configuration of both), we can implement a comprehensive environment, in which the recruitment process […]

Read more
blogpost
Articles

IT Service Management for business. Service desk with ITIL certificate

What's the difference between a service desk and a helpdesk; what functionalities does an advanced tool like that have, and what criteria to take into consideration when choosing ITSM software for your company? See the answers.

Read more
blogpost
Articles

Asset Management in Jira Service Management

Asset Management is often associated with financial asset management; it can also refer to the management of any fixed assets within a company – and it is in this context that we present the embedding of this concept and related activities in Jira Service Management.

Read more
blogpost
Articles

Automatic and manual tests – test management platform based on Jira Software + Xray

One of the strategic stages of software development work is testing - every single "package" of code should be tested in order to identify and fix bugs as quickly as possible. In addition to automation, it's important that the environment bridges the silos between the development and operations teams. These needs are met by Jira Software with the Xray app and additional tools.

Read more
blogpost
Articles

Customer Portal in Jira Service Management: notifications, automation, knowledge base, SLA

The Customer Portal is easy to use, and at the same time it offers advanced configuration possibilities. It is a solution dedicated to businesses in need of a platform that will allow their customers and employees to report faults, needs, and problems, which are then forwarded to the appropriate support line. The Customer Portal in Jira Service Management is a tool that is being constantly developed by its producer. It is scalable, certified in terms of compliance with ITIL, and above all – easy to use.

Read more
blogpost
Articles

Jira Service Desk becomes Jira Service Management. New name, more possibilities.

The year 2020, and especially its end, is the time of changes announced by the producer of Jira software. Recently, we have heard about the new licensing and support conditions for Atlassian Server products, and today (November 9, 2020), the company announced the rebranding of their Jira Service Desk. Apart from the new name – Jira Service Management, customers will receive a complex, comprehensive ticket management system. So far, Jira Service Desk has been enriched with many useful functionalities through add-ons. Now it will have them by default, which is a huge step towards meeting the needs of business customers.

Read more
blogpost
Articles

Jira Cloud vs Jira Server

What does Jira Cloud have that Jira Server doesn’t? What benefits does it offer, what functionalities are worth noting, and do both these hosting options imply the same way of accounting for maintenance? Here we present the most important differences between Jira Cloud and Jira Server. You should get to know them before making a decision on implementing or migrating your company’s software.

Read more
blogpost
Articles

BigPicture 8.0 – a new, better version of the PMO add-on for Jira Software

BigPicture by SoftwarePlant, a new version of the project management and PMO development addendum in Jira, is coming. What changes will it bring? How can you prepare for them? I will answer these questions later in the text – please read on.

Read more
blogpost
Articles

Agility. All you need to know about the agile methodology

What actually is agile? How did it all start? What are the principles that characterise this working method, how does it differ from the traditional approach and how to manage projects in an effective (and agile) way? We present a set of information that every person associated with technology in any way should become familiar with. We hope you will find it valuable and recommendable. Feel free to comment or contact us if you have any specific questions

Read more
blogpost
Articles

What software should you choose to work remotely?

At a time of the coronavirus threat, the ability to work from home is no longer a privilege, but a necessity. The employees at Transition Technologies PSC have successfully switched to this model of working thanks to, among others, the Atlassian tools that ensure the efficient information flow from anywhere in the world. The text presents several proven programs that allow remote work to be performed without the downtime and without interfering with the implementation of projects. Among them, you can find brand flagship systems, such as Jira and Confluence.

Read more
blogpost
Articles

Jira Core – a tool for effective work and project management for the marketing team

A good marketing team consists of people who have different, complementary skills: content, SEO, paid campaigns specialists, graphic designers, developers, analysts, PR or Employer Branding experts. This is not an exhaustive list – it all depends on what projects are or will be implemented. And although the team consists of different people, each of them has the same goal: to do their job well and on time, and to manage their (but not only their) task list on an ongoing basis.

Read more
blogpost
Articles

Project Management Office in your company

We respond to the expectations of professional project management practices in business environments, offering a complete PMO solution implementation, within the Atlassian tools environment.

Read more
blogpost
Articles

Atlassian Summit 2020 – we’ll be there!

After a two-year break we return to the Atlassian Summit as sponsors of the event. In Las Vegas, Tomasz Pabich, Project Manager, will give a lecture on “The dos and don'ts of transforming your company culture”, while Mirosław Żyszczyński, Technical Support Team Leader, has once again been invited by the Australian producer as one of the most active people in the Atlassian community.

Read more
blogpost
Articles

Jira as CRM system

Jira by Atlassian is software well-known all over the world; it is associated mainly with solutions for developer teams. The tool can be successfully used in managing projects of different purposes. One of the examples of unusual (at first glance) use of Jira environment is Customer Relationship Management.

Read more
blogpost
Articles

Program for business trip expense reports – Jira

Settling local and overseas business trip expenses is a process that companies would like to go through in possibly the least complicated and most automated way. TT PSC team has proven to properly configure Jira to work well in this context.

Read more
blogpost
Articles

Logging work time – timesheets in the Jira system

Timesheet processing, time tracking in Jira? No problem! If your company uses software by Atlassian, you don't have to invest in new solutions – the software can be extended with additional functionalities for reporting and registering working hours.

Read more
blogpost
Articles

Vacation management in Jira. Explore the possibilities of Vacation Manager

A vacation management program that is easy to use, affordable, and enables the finalization of the entire process without the need to print anything is what many entrepreneurs dream about. If your company uses Jira, implementing the vacation management functionalities will be fairly easy – all you need is the Vacation Manager for Jira app.

Read more
blogpost
Articles

Atlassian Open 2019 – news, thoughts

A strong emphasis on cloud solutions, customer-focused narration as well as promoting the idea of being “open”. What happened during Atlassian Open 2019 in Vienna, what elements was the event composed of and how is it being evaluated by TTPSC professionals?

Read more
blogpost
Articles

Confluence by Atlassian – opinions and the most important functionalities from users’ point of view

Based on implementation in Transition Technologies Capital Group currently hires nearly 1000 employees working in broadly understood advanced technology field.

Read more
blogpost
Articles

Atlassian Summit 2019 – summary, trends, changes

Atlassian Summit is an annual even organized by an Australian producer of software for work management, among which the most popular ones are Jira and Confluence.

Read more
blogpost
Articles

DevOps – from trend to standard

DevOps idea appeared in IT field already in 2009 and since then, it has been systematically entering global business world as a method of running software development projects. After over 10 years, we know that DevOps bring measurable benefits, improving the efficiency of applications development process.

Read more
blogpost
Articles

Jira Data Center – solution which does not let down. What is it and why is it worth investing in?

Regardless of implemented tools, every company needs an environment where they can embed their own processes and manage them. A perfect tool for that is Jira and other Atlassian products. Jira Data Center is an advanced solution for businesses which additionally need the guarantee of constant software operation.

Read more
blogpost
Articles

TT PSC The Gold Sponsor of Portfolio Experience 2019 conference

How to set up PMO for any business project? Managing projects portfolio is a huge challenge for every organization; it requires constant control of specified tasks and general workflow. Fortunately, there are tools which prove to work well in this role and makes it possible to manage even the most complex projects effectively. During April’s […]

Read more
blogpost
Articles

Transition Technologies PSC had been awarded with Enterprise status of Atlassian brand

One of the areas of our company activity, relates to Atlassian brand systems and tools implementation for business customers. Responsible for it department, holds partnership status within the mentioned independent software vendor and more recently has also been rewarded with Enterprise distinction. Such merit means that we are able to face the most sophisticated implementations […]

Read more
blogpost
Articles

DevOps – culture, philosophy and cooperation model

DevOps is a definition that rapidly trends up and at the same time it stays not fully comprehensible. Atlassian, as a global-range developer of systems for business projects and processes management tries to promote DevOps way of thinking and through this learn how spread the word through its customers. Get familiar with key assumptions standing […]

Read more
blogpost
Articles

Managing work time and holidays has never been easier. Upgrade of Vacation Manager for Jira from Transition Technologies PSC Atlassian

Managing work in such a way that all processes run smoothly is the more difficult the bigger the company becomes. On the one hand, the owner enjoys the development of business, on the other, he sees organizational challenges growing. Jira is a system that supports work flow of millions of users around the world. Transition […]

Read more
blogpost
Articles

Project Management Office toolkit in Atlassian Jira environment

_Jira is not just a “bugtracker”   Project Management Office, often referred to by its abbreviation PMO, is an organizational unit which appears in a growing number of companies in Poland. Every company conducting a dozen simultaneous projects begins to identify the need to have a central unit which would help educate people, standardize processes […]

Read more
blogpost
Articles

Unifying Amway’s IT systems through single platform based on the Atlassian suite

It’s been six years now since we established our official partnership with Atlassian in 2012. Since then our expertise and professionalism in supporting, maintaining and adjusting this Australian company’s tools was recognized by organizations across the nation and worldwide. Our collaboration with one of the biggest direct sales companies is a great example. Amway – […]

Read more

Let’s get in touch

Contact us