audit and compliance
SecurEcom offers CISA certified specialists. They will ensure that your organization complies with the various IT standards and regulations and will support you in your data security governance.
Our team of experts covers all angles, whether it’s to respond to regulatory constraints, to follow market standards or simply to gain an overview of the situation.
- Compliance
- Standards and best practices
- Risk analysis
- IT audit
- Settings review
- Insurance with regard to external suppliers
Our auditors and security advisors coach you through a six-phase process:
Perimeter – Validation of the audit plan– Audit – Risks and vulnerability – Remediation plan – Maintenance plan
SecurEcom professionals are proficient in helping businesses comply with the laws and standards in effect in various sectors of activity: Sarbanes-Oxley, HIPAA, PCI, Gramm-Leach-Bliley (GLBA), BASEL III, SOLVABILITY II, NERC-CIP, NCMC 3416 and SSAE 16.
By complying with the rules of your market, you are demonstrating sound and reassuring governance with respect to the following aspects: confidentiality and integrity of information, availability of services, access control, audit and recording in the logs, management of modifications, authentication, and internal framework for governance of company risks (ERM).