Governance, risk and compliance

Businesses have grasped the importance of IT security but tend to approach it either from a purely technical angle, or an organisational one, instead of applying a holistic approach.

With organisations becoming increasingly complex, it is essential to implement a security governance system, and this requires expert advice and assistance in risk management and compliance.

Our services comply with the French government’s national IT security agency (ANSSI) standards and are aimed at organisations that produce and distribute goods and services that are considered either vital or high-risk, or any company for which data protection is vital.

Governance

Security orientation plan
IT Management system
Security improvement plan

Risks

ISO 2700x, 22301 certifications
Methodology assistance
Disaster Recovery Plan
Business Continuity Plan
BIA
Fast response times

Compliance

Architecture audit
Configuration audit
Source code audit
Penetration testing
Organisational and physical audit
CNIL (Commission nationale de l'informatique et des libertés)
Hautes Autorités de Santé (French national authority for health)
French data security legislation: RGS v2, ARJEL

our offers