In addition to the protection of Information Systems, Secure provides ISS consultancy services, including assisting with securing certification for your IS. Secure is active in the following phases:
Governance:
Implementation of the risk analysis of the Information System in place
Production of the through-life security reports
Drafting of 3 documents that are essential for certification: Specific Security Assurance Plan, specific certification file, generic certification strategy
Information System management:
Documentation relating to the Information System in place: security certification, mapping
Through-life security: monitoring security vulnerabilities and corrective measures, non-regression tests on a representative platform
Incident management: Service performed by a PASSI (auditor of information system security) and a PDIS (security incident detection service provider)