CASE STUDY
Aumico reduced the time required to complete vendor security questionnaires with Secfix

About Aumico

Aumico is a SaaS solution simplifying financial year end closing processes for fiduciary firms. Aumico standardizes workflows for the creation and documentation of annual reports, ensuring accuracy, compliance, and efficiency.

Website

https://aumico.io/

Location

Zurich

Industry

B2B SaaS

B2B

Fintech

Employees

11-50

The Challenge

How to get ISO 27001 in just 4 months

As Aumico expanded, the company recognized the need for ISO 27001 certification to strengthen its security posture and formalize its processes. While they had already invested significant effort into security measures, their documentation and process clarity were lacking. Without a structured approach, achieving ISO certification seemed complex and time-consuming.

The Solution

Step-by-Step guidance from Secfix to get ISO 27001 quickly

Aumico turned to Secfix to simplify the ISO 27001 certification process. Secfix guided them through every step, helping them understand what was required and how to successfully implement an Information Security Management System (ISMS).

"Without a strong educational background in ISMS or IT security, the process initially seemed overwhelming. Secfix helped break it down into manageable steps, making it clear what was important and ensuring we were on the right track." – Samuel Schmid, Aumico CTO

Why Secfix

Structured approach to ISO 27001 certification

Secfix provided step-by-step guidance, eliminating confusion and reducing the time and effort required to achieve compliance. Unlike traditional consulting services, Secfix offered an intuitive, self-service experience with hands-on support when needed.

Risk Assessment:

"The risk assessment feature was particularly helpful. Once we completed it, everything else became much clearer and easier to manage." – Samuel Schmid, Aumico CTO

  • Trust Center: "The Trust Center is a great feature—it’s well-designed and helps demonstrate our security posture effectively."
  • Automated compliance tracking: The platform provided real-time updates on Aumico compliance progress, helping us stay on top of requirements without extra effort.
  • Pre-filled security questionnaires: This feature saved Aumico hours of work by automating responses to common security questions.
  • Exceptional support from Secfix. Despite the ambitious four-month timeline, Secfix provided rapid and responsive support throughout the process.
Results

Reduced time for security questionnaires

Before certification, completing security questionnaires was a daunting task, often taking between two to four hours per request. Now, with ISO 27001 in place, Aumico has reduced this workload by 90%, allowing them to respond quickly and confidently to security-related inquiries. Enhanced compliance and security culture Beyond just obtaining the certification, Aumico found that SecFix encouraged a proactive security culture within the company. Regular security checkups became part of their routine, not just for audit purposes but as an integral part of maintaining strong security standards. "Secfix helped us stay motivated and disciplined in maintaining security best practices beyond the certification process." – Aumico CTO

I don’t know how others approach ISO certification, but for us, choosing Secfix was the right decision, and we have no regrets.

Samuel Schmid

CTO @Aumico