In addition to the protection of Information Systems, Secure provides ISS consultancy services, including assisting with securing certification for your IS. Secure is active in the following phases:
- Governance:
- Implementation of the risk analysis of the Information System in place
- Production of the through-life security reports
- Drafting of 3 documents that are essential for certification: Specific Security Assurance Plan, specific certification file, generic certification strategy
- Information System management:
- Documentation relating to the Information System in place: security certification, mapping
- Through-life security: monitoring security vulnerabilities and corrective measures, non-regression tests on a representative platform
- Incident management: Service performed by a PASSI (auditor of information system security) and a PDIS (security incident detection service provider)
- Logging
- Log correlation and analysis
- Detection
- Processing security incidents
- Processing alerts
- Emergency response management