contact us

Preparing for certification & compliance

Structure, demonstrate and accelerate your safety

A single path to prepare your certifications and prove your compliance.

ISO 27001, NIS2/DORA, IEC 62443... a coherent system, with no redundant construction sites.

Our approach

(common to all reference systems)

Flash diagnostics

Mapping, multi-reference standard deviation, risk/impact prioritization 

Governance & Risks

Policy, roles, risk register, objectives and indicators

Controls and evidence

Procedures, logging, IR/BCP/DRP plans, dashboards

Pre-audit & maintenance

Internal audits, exercises, authority/auditor coaching, run & improvement

Dora

Finance sector

DORA requires tangible resilience for financial players. We set up a clear management structure, a reporting circuit compatible with the authorities, and an accurate view of dependencies on critical suppliers. Contracts breathe control, resilience tests become regular appointments, crisis communication is ready. Your services stand firm, even when IT falters.

More about DORA

ISO 27001

Volunteer

ISO 27001 sets a clear course: protect information and the prove. We set the governance, We look at the risks as they are, and formalize simple rules that can be applied over time. Access, backups, incident handling: everything is legible and measurable. In the end, you leave with a clear policy, a comprehensible risk register and an audit kit that facilitates certification.

Learn more about ISO 27001

IEC 62443

Industrial sector

IEC 62443 speaks the language of the workshop. Sensitive areas are neatly separated, hardened without weighing them down, documented just enough for maintain production in safety. Authorized flows are visible, changes follow a defined path, and maintenance no longer creates gaps. Visit line remains productive, And it stays that way for a long time.

Learn more about IEC 62443

NIS2

Legal obligation

NIS2 focuses on ability to react quickly and be accountable. Roles are clarified, including those of management, and messages are prepared and ready to be sent on time. Relations with service providers are framed, evidence is filed away and reflexes are trained. By the time an incident occurs, everyone knows what to do, when to say it and how to demonstrate it.

Learn more about NIS2

Part-IS

Aeronautical sector

PART-IS sets the rules for cybersecurity aeronautics Protecting critical systems and proving it, without compromising operational safety. We structure the governancewe manage risk risks of theft, and we're putting in place the necessary simple controls that last. On-board systems, maintenance, air traffic: everything is managed and traceable. In the end, you leave with an ISMS ready for EASA audits, A clear compliance plan and usable evidence.

Find out more about PART-IS

Our blog

Discover the latest news and trends in management and compliance.

The Domino Effect of Cyber. Why EASA and Part IS require you to monitor your suppliers.

CaRE program - Area 2: funding for your medical-social establishment.

Protecting workstations and infrastructure: a vital challenge for hospitals and healthcare associations

Discover all our articles
en_US
fr_FR de_DE it_IT en_US

Our services

RM EBIOS risk analysis

Preparing for certification & compliance

Safety awareness campaigns

SSI policies & charters

ISO 42001 & IA ACT support

Time-sharing CISO

Supplier evaluation

Organizational audits

Technical audits

Phishia CTI

PRA / PCA

Crisis management exercise

Employee support

Post-Incident Assistance and Remediation

Who we are

Join us

Our blog

Contact us