{"id":2940,"date":"2026-07-13T11:15:29","date_gmt":"2026-07-13T09:15:29","guid":{"rendered":"https:\/\/www.aktiva-info.com\/?p=2940"},"modified":"2026-07-13T11:16:17","modified_gmt":"2026-07-13T09:16:17","slug":"aktiva-info-awarded-eu-cybersecurity-grant-our-path-to-iso-27001-certification","status":"publish","type":"post","link":"https:\/\/www.aktiva-info.com\/en\/aktiva-info-awarded-eu-cybersecurity-grant-our-path-to-iso-27001-certification\/","title":{"rendered":"Aktiva Info Awarded EU Cybersecurity Grant: Our Path to ISO 27001 Certification"},"content":{"rendered":"\n<p>We are pleased to announce that Aktiva Info d.o.o. is one of 134 Croatian companies awarded grant funding under the call <strong>&#8220;Strengthening Cybersecurity of Micro, Small and Medium Enterprises (SMEs)&#8221;<\/strong>, implemented by CARNET&#8217;s <strong>National Coordination Centre for Industry, Technology and Research in Cybersecurity (NKS)<\/strong>. The program is worth approximately \u20ac2.9 million in total and is co-funded by the European Union.<\/p>\n\n\n\n<p>Grant agreements were presented to recipients at an award ceremony held at the National and University Library in Zagreb.<\/p>\n\n\n\n<h4>Why we applied<\/h4>\n\n\n\n<p>Our software runs mission-critical operations for our clients every single day. <strong>S24 WMS<\/strong> manages warehouse operations for more than 250 logistics, distribution, and manufacturing companies \u2014 including Lagermax, Hrvatska Po\u0161ta, Ralu Logistika, and Vetropack. Our <strong>ticketing system for maritime operators<\/strong> processes bookings and ticket sales in passenger shipping.<\/p>\n\n\n\n<p>Inventory data, orders, dispatches, bookings, and ERP integrations flow through our systems continuously. Every one of those data points represents business value we are obligated to protect.<\/p>\n\n\n\n<p>Cyber threats targeting European SMEs are growing year over year, and the regulatory landscape \u2014 above all the <strong>NIS2 Directive<\/strong> \u2014 is placing increasingly strict requirements on companies in the supply chains of critical sectors like logistics and transport. As a software vendor to those sectors, we&#8217;re not waiting for security to become an obligation. We want it to be our competitive advantage.<\/p>\n\n\n\n<h4>What the project covers<\/h4>\n\n\n\n<p>The project consists of three main activities:<\/p>\n\n\n\n<p><strong>1. ISO\/IEC 27001 certification<\/strong><\/p>\n\n\n\n<p>We are establishing a complete <strong>Information Security Management System (ISMS)<\/strong> in line with the international standard ISO\/IEC 27001:2022. This includes risk assessment, information asset classification, security policies and procedures, access management, secure software development (secure SDLC), and business continuity planning. The process concludes with an independent certification audit by an accredited certification body.<\/p>\n\n\n\n<p>For our clients, this means Aktiva Info&#8217;s security practices will be formally documented, regularly audited, and confirmed by an internationally recognized certificate \u2014 not just a matter of internal trust.<\/p>\n\n\n\n<p><strong>2. Penetration testing<\/strong><\/p>\n\n\n\n<p>Independent security experts will conduct <strong>penetration tests<\/strong> of our key systems \u2014 the S24 WMS platform and the maritime ticketing system. The goal is to identify and remediate vulnerabilities before anyone else finds them. Test findings will feed directly into our development process and the ISMS security controls.<\/p>\n\n\n\n<p><strong>3. Cybersecurity awareness program<\/strong><\/p>\n\n\n\n<p>Technology is only part of the security equation \u2014 the majority of successful attacks still begin with human error. That&#8217;s why every Aktiva Info employee will complete a <strong>structured security training program<\/strong>: from recognizing phishing attacks and handling data securely to secure software development practices for our engineering team.<\/p>\n\n\n\n<h4>What this means for our clients<\/h4>\n\n\n\n<p>Concretely, three things:<\/p>\n\n\n\n<ul>\n<li><strong>Verified security, not promised security.<\/strong> An ISO 27001 certificate means an independent auditor has confirmed our security practices \u2014 something a growing number of enterprise clients and public-sector buyers now require from their software vendors.<\/li>\n\n\n\n<li><strong>Tested systems.<\/strong> Penetration testing of S24 WMS and the ticketing platform provides objective confirmation of the resilience of the systems our clients rely on every day.<\/li>\n\n\n\n<li><strong>Easier compliance for you.<\/strong> If your business falls under the NIS2 Directive or similar requirements, having a certified vendor in your supply chain strengthens your own regulatory position.<\/li>\n<\/ul>\n\n\n\n<h4>Timeline<\/h4>\n\n\n\n<p>Project implementation is underway and will be implemented in 12 months. We will report on key milestones \u2014 completion of the ISMS, certification audit results, and the awarding of the certificate \u2014 here on the blog and on our LinkedIn page.<\/p>\n\n\n\n<h4>Thank you<\/h4>\n\n\n\n<p>We thank the <strong>National Coordination Centre for Cybersecurity (NKS)<\/strong> and <strong>CARNET<\/strong> for recognizing our project and for their systematic support of Croatian SMEs in building cyber resilience. Programs like this one make the difference between security as a cost and security as a strategic investment.<\/p>\n\n\n\n<hr class=\"wp-block-separator has-alpha-channel-opacity\"\/>\n\n\n\n<p><em>This project is co-funded by the European Union under the call &#8220;Strengthening Cybersecurity of Micro, Small and Medium Enterprises (SMEs)&#8221; implemented by CARNET \u2014 National Coordination Centre for Industry, Technology and Research in Cybersecurity.<\/em><\/p>\n\n\n\n<p><em>Questions about the security of our systems, or curious how S24 WMS can improve your warehouse operations? <a href=\"https:\/\/www.aktiva-info.com\/en\/about-us\/contact\/\" data-type=\"URL\" data-id=\"https:\/\/www.aktiva-info.com\/en\/about-us\/contact\/\">Contact us<\/a><\/em>.<\/p>\n\n\n\n<p><\/p>\n","protected":false},"excerpt":{"rendered":"<p>We are pleased to announce that Aktiva Info d.o.o. is one of 134 Croatian companies awarded grant funding under the call &#8220;Strengthening Cybersecurity of Micro, Small and Medium Enterprises (SMEs)&#8221;, implemented by CARNET&#8217;s National Coordination Centre for Industry, Technology and Research in Cybersecurity (NKS). The program is worth approximately \u20ac2.9 million in total and is [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":2934,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[48],"tags":[],"_links":{"self":[{"href":"https:\/\/www.aktiva-info.com\/en\/wp-json\/wp\/v2\/posts\/2940"}],"collection":[{"href":"https:\/\/www.aktiva-info.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.aktiva-info.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.aktiva-info.com\/en\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.aktiva-info.com\/en\/wp-json\/wp\/v2\/comments?post=2940"}],"version-history":[{"count":2,"href":"https:\/\/www.aktiva-info.com\/en\/wp-json\/wp\/v2\/posts\/2940\/revisions"}],"predecessor-version":[{"id":2944,"href":"https:\/\/www.aktiva-info.com\/en\/wp-json\/wp\/v2\/posts\/2940\/revisions\/2944"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.aktiva-info.com\/en\/wp-json\/wp\/v2\/media\/2934"}],"wp:attachment":[{"href":"https:\/\/www.aktiva-info.com\/en\/wp-json\/wp\/v2\/media?parent=2940"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.aktiva-info.com\/en\/wp-json\/wp\/v2\/categories?post=2940"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.aktiva-info.com\/en\/wp-json\/wp\/v2\/tags?post=2940"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}