Governance, Compliance And Risk Management

  1. HOME PAGE
  2. GRC

Support your cybersecurity plan with a governance plan

A cybersecurity management plan aligned with the business needs of the company must be put in place. It will establish the company's risk tolerance and perform a risk analysis of operations. Classify company assets to establish a better information protection strategy and to put controls in the most important places in priority.

  • Modular offer and available for very small businesses up to large businesses.
  • Be prepared to handle any type of crisis.
  • The implementation of a corporate security policy as well as several management processes.
  • Take advantage of the expertise of a CISO and cybersecurity advisor to help you with your risk analysis.
Services de gestion de cybersécurité

Governance and Risk

Benefit from our support in your business decision-making in order to mitigate risks. Let us guide you in the governance and management of your cybersecurity.

  • Implementation and maintenance of a corporate security policy.
  • Privacy Policy and Process.
  • Backup policy and disaster recovery plan.
  • Incident management.
  • Analyse et gestion de risque.
  • Management of third parties.
  • Classification of information assets.
  • Establish cyber risk management models.
Services de conformité de Cybersécurité

Compliance

We support and advise you in compliance with information security compliance frameworks, regulations and laws.

  • Requirements for cyber insurance.
  • Preparation for Law 25 / Bill 64 and LPRPSP (Quebec).
  • Planning and auditing to ISO 27001 and SOC 2 certification.
  • Compliance with a client's cybersecurity requirements.
  • Compliance with Canadian law PIPEDA and LPRPN.
  • Compliance with international laws: GDPR, UK-GDPR, FISMA, HAS, CCPA, LGPD, PPA, APPI, PIPA
  • Regulation Act 198 (C-SoX), SoX, NERC and NYDFS.
  • Alignment with reference frameworks such as NIST 800-53, SANS CIS, COBIT and OWASP.

Awareness and training

Humans play a role in 90% of attacks and scams. It is our duty to train companies to adopt best online practices, to repel fraudsters and hackers with a personalized support plan according to your needs.

  • Establish a user training and awareness plan.
  • Prevent human error through prevention.
  • Face-to-face training by an expert.

LIMITED PROMOTION

Take advantage of a security audit of your environments for free!

LEARN MORE