Know the current state of your organization and take measures to minimize the impact in case of incidents
Risk Management establishes a set of methodologies aimed at assessing in a quantitative or qualitative way the threats to which it is exposed, establishing and collaborating in the articulation of the necessary actions to reduce the impact of existing risks.
The risk management services are distinguished in:
Identify, assess and manage the main risks and threats considering the main assets of the IT processes in terms of technologies, procedures and people involved in them. Our analysis is based on specific methodologies such as Magerit and Octave.
Business continuity planning
Assess the impact that risks can cause on business processes and define optimized response solutions and procedures that enable organizations to operate in any disaster scenario. BS 25999: Design, develop and implement a business continuity management model (BCM) based on the BS: 25999 standard, guaranteeing operational effectiveness and regulatory compliance.
Security Master Plan
Identify, prioritize and budget the different security initiatives, as well as the definition of the strategic framework of Security of the Organization based on standards such as ISO 27001.
IT risk management
Once the risks have been identified and valued, specific actions are carried out aimed at managing the main risks detected and the threats derived from them.
Information Security Management System
The management models allow reaching a stage of advanced maturity of Information Security, through the process of continuous improvement, called PDCA (Plan - Do - Check - Act). The information security management systems can be certified under the ISO / IEC 27001: 2005 standard.