Curit on information security: “Partnering with Wired Relations is a strategic decision”

“Partnering with Wired Relations is not just a choice of tool; it’s a strategic decision that strengthens the trust and confidence we want to offer our customers.”

Three months ago, ERP provider and consulting firm Curit decided to invest in Wired Relations as their GRC solution.

This decision did not come out of nowhere but was driven by increasing demand for compliance and IT security from their customers.

“We clearly see a growing focus on this area. Our customers are trying to navigate frameworks such as CIS18 and NIS2, and they expect us, as a supplier, to have full control of our information security.”

This is how Hans Peter Bøss, Chief Information Officer at Curit, explains the situation. Curit specializes in the Enterprise Resource Planning system IFS Cloud, which they deliver to small and medium-sized businesses in Denmark.

The need for a tool

For Curit, the implementation process gained real momentum in spring 2025, when a potential NIS2-regulated customer requested documentation of their information security processes.

From that point, the team led by Hans Peter Bøss and Information Security Coordinator Mihai Barbus set out to understand what it really takes to serve a company subject to NIS2. They soon realized the requirements were extensive and that adedicated tool would be indispensable.

Here, Wired Relations proved to be the solution. “When working with customers subject to NIS2, we need a system to help us stay on top of documentation requirements. Wired Relations provides a solution allowing us to meet these requirements in atransparent, documented, and systematic way across the organization,” explains Hans Peter Bøss.

Curit set one overarching goal: achieve ISO27001 compliance and use it as a framework for their information security work. Wired Relations has played a key role in supporting this process.

A clear overview makes all the difference‍

“Structure and clarity” - that’s how Hans Peter Bøss describes Wired Relations.

“The system’s task management feature is very effectively in supporting our governance by ensuring that approvals and deadlines are tracked efficiently and systematically.”

“I also appreciate how the cross-references between standards like ISO27001 and CIS18 reduce the risk of duplicate work. Progress in one standard is automatically reflected across the others. The dashboard provides a clear overview, which is exactly what management wants to see,” he adds.

Another valuable feature is the ability to distribute policies internally and track whether employees have read and acknowledged them, according to Mihai Barbus.

“Everyone must understand the importance of IT security, and the policy management function helps achieve that,” he says.

Information security builds trust

‍Curit’s ongoing efforts in information security and its work toward ISO27001 compliance, are already fostering trust among its customers.

“Being able to tell our customers that we are ISO27001 compliant shows that we haven’t only considered security, but have actively implemented it, which gives them peace of mind,” says Hans Peter Bøss.

“Right now,we see information security as a competitive advantage, but in the future, it’ll become a baseline requirement. Those who fail to meet it will fall behind.”

And if Curit were to advise other companies facing growing demand for strong information security?

“First, you need to understand the scope of the work. Implementation isn’t an easy task, and it requires respect for the scope. Once you understand this, you can assess whether a GRC solution or other help is necessary. But the initial groundwork is essential.”