Gränges

Headquarters

Website

www.granges.com

Sites/Employees

Year Founded

Cypro Services Delivered

The Challenge

Gränges AB, a global leader in the aluminium industry, wanted to strengthen the resilience of its Finspång facility’s IT environment. The company faced risks linked to weak access controls, exposed data surfaces, and internal misconfigurations — all of which could threaten operations, data protection, and long-term trust.

Engagement Approach

Cypro worked closely with Gränges to deliver a grey-box penetration test and strategic cybersecurity support. The program included:

• Network & Active Directory testing: simulating real-world attacks to uncover critical vulnerabilities.
• Zero-trust recommendations: guidance on stronger segmentation, authentication, and privileged account management.
• Dark web monitoring: early detection of exposed credentials and external threats.
• Governance support: vCISO guidance, policy work, and incident response planning.

Results & Impact

• Critical vulnerabilities fixed: major issues resolved within 72 hours.
• Improved maturity:  security maturity level raised from 2 → 4 in three months.
• Better preparedness: incident handling established at group level.
• Strategic alignment: infrastructure strengthened to meet ISO/IEC 27001 and NIS2 expectations.
• Trust reinforced: resilience improved internally and with external stakeholders.

Addressing vulnerabilities quickly, embedding zero-trust principles, and aligning with international standards creates both operational security and long-term strategic value.

“Cypro has strengthened our information security in a professional and methodical way and prepared us for future requirements. We see the cooperation as long-term and value-creating”

Gränges AB