Security and Certifications

‍

Offensive Security

Ethical attacks undertaken to evaluate and ensure the effectiveness of the used security mechanisms and tools.

Our Offensive Security offer revolves around the following activities:

• Application Security
• DevSecOps
• Penetration Testing
• Configuration Audit
• ICS Security
• Architecture Review

Our assets:

• Highly qualified and dedicated consultants for Offensive Security projects.
• Several DevSecOps projects for Digital Factory in the banking sector.
• Several cyber security accreditations in the banking sector (PCI DSS, PCI 3DS, PCI PIN, PCI CP, PCI SSF, PCI PFI  CSP SWIFT).
• A rich feedback and experience.
• Library of Uses Cases relating to fraudulent operating modes.

‍

‍

Governance, Risk and Compliance

Full assistance of clients ‘compliance journey according to different cybersecurity standards.

Our Governance, Risk & Compliance offer revolves around the following activities:

PCIDSS / PCI3DS / PCIPIN / PCICPS / PCISSF / PCIPFI / Directive Nationale de Sécurité des SI / Helpdesk / SWIFT CSP / Regulatory Compliance / Management System / Business Continuity

Our assets:

Compliance with cyber security standards of the banking sector:

• Highly qualified assessors intervening within the framework of Electronic Banking cybersecurity compliance projects (6 PCI QSA, 2 PA  QSA, 2 PCI 3DS, 2 PCI QPA, 2 PCI SSFA, PCI PFI);
• More than 200 missions of PCI compliance projects;
• Wide geographic coverage (Africa, Europe, Middle East and Pacific Asia);
• Compliance with international ISO standards
• A pool of consultants conducting Cybersecurity Governance missions (Risk analysis, Data classification, Security policies, Security  processes and procedures, Awareness strategies, Cybersecurity Master Plan);
• Over 20 projects to set up an Information Security Management System (ISMS) according to the ISO27001 standard
• About 10 projects to set up a Business Continuity Management System (BCMS) according to the ISO22301 standards

Compliance with personal data protection regulations:

• Qualified and DPO (Data Privacy Officer) certified resources for European regulations (GDPR) compliance projects.
• + 50 projects to comply with Law 09-08 for the protection of personal data.

‍

‍

Cyberdefense

A wide range of best-of-breed solutions of leading market vendors.

Our Cyberdefense offer revolves around the following activities :

Network Security / Continuity of Services / Security Intelligence / Host & Endpoint Security / Application Security / DATA Security / Traceability / Risk Management

Our assets:

• Cybersecurity solutions integration projects,
• Certified consultants on cybersecurity solutions,
• +200 Certifications on cybersecurity solutions;
• Tuning of solutions taking into consideration Cybersecurity standards and good practices;
• High levels of partnership with leading vendors.

‍

‍

Security Intelligence

A security event monitoring cyber-SOC/ SIRT.‍

Our Security Intelligence offer revolves around the following activities:

• Security Monitoring & Incident Response
• SIRT (Security Incident Response Team)
• Fraud Prevention
• Forensic Investigation & Compromise Assessment

Our assets:

• Certified analysts.
• +25 forensic investigation missions per year.
• +60 banks spread over 15 countries supervised in 24/7 basis.
• +500 0000 Security events processed per second.
• +300 cybersecurity bulletins published per year.
• Uses cases covering large scenarios of bank fraud.
• Certifications.

‍

‍

Managed Security Service Provider (MSSP)

Assistance for the outsourcing of cybersecurity infrastructure in accordance with best practices.

Our MSSP offer:

• Delegation & Proximity tasks
• Operation & Assistance to Administrators
• Preventive & Corrective Maintenance
• Helth Check: Maintained in operational conditions

Our assets:

• A great feedback from multiple projects to deploy cybersecurity solutions.
• Certified cyber security consultants on managed solutions.
• +60 managed cyber security infrastructure.

‍