contact us

Preparing for certification & compliance

Structure, demonstrate and accelerate your safety

A single path to prepare your certifications and prove your compliance.

ISO 27001, NIS2/DORA, IEC 62443... a coherent system, with no redundant construction sites.

Our approach

(common to all reference systems)

Flash diagnostics

Mapping, multi-reference standard deviation, risk/impact prioritization 

Governance & Risks

Policy, roles, risk register, objectives and indicators

Controls and evidence

Procedures, logging, IR/BCP/DRP plans, dashboards

Pre-audit & maintenance

Internal audits, exercises, authority/auditor coaching, run & improvement

Dora

Finance sector

DORA demands tangible resilience from financial players. A clear management system is set up, with a reporting circuit compatible with the authority and an exact view of dependencies on critical suppliers. Contracts breathe control, resilience tests become regular appointments, crisis communication is ready. Your services stand firm, even when IT falters.
More about DORA

ISO 27001

Volunteer

ISO 27001 sets a clear course: protect information and prove it. Governance is set, risks are considered as they are, and simple rules are formalized that stand the test of time. Access, backups, incident handling: everything is legible and measurable. In the end, you leave with a clear policy, a comprehensible risk register and an audit kit that facilitates certification.

Learn more about ISO 27001

IEC 62443

Industrial sector

IEC 62443 speaks the language of the workshop. Sensitive areas are neatly separated, hardening is achieved without weighing down, and just enough documentation is provided to keep production safe. Authorized flows are visible, changes follow a clear path, and maintenance no longer creates gaps. The line remains productive, and for a long time.
Learn more about IEC 62443

NIS2

Legal obligation

NIS2 emphasizes the ability to react quickly and be accountable. Roles are clarified, including those of management, and messages are prepared and ready to be sent on time. Relations with service providers are framed, evidence is stored and reflexes are trained. On the day the incident occurs, everyone knows what to do, when to say it and how to demonstrate it.
Learn more about NIS2

Part-IS

Aeronautical sector

PART-IS sets the rules for aviation cybersecurity: protecting critical systems and proving their value, without compromising operational safety. It structures governance, manages digital risks as if they were flight risks, and implements simple controls that last. On-board systems, maintenance, air traffic: everything is controlled and traceable. In the end, you leave with an ISMS ready for EASA audits, a clear compliance plan and usable evidence.

Find out more about PART-IS

Our blog

Discover the latest news and trends in management and compliance.

All you need to know about ISO 27001

NIS2 & DORA: EU obligations, key differences, concrete roadmap

IEC 62443: ISO27001 adapted... for industry

Discover all our articles
en_US
fr_FR de_DE it_IT en_US

Our services

RM EBIOS risk analysis

Preparing for certification & compliance

Safety awareness campaigns

SSI policies & charters

ISO 42001 & IA ACT support

Time-sharing CISO

Supplier evaluation

Organizational audits

Technical audits

Phishia CTI

Phishia SOC

PRA / PCA

Crisis management exercise

Responses to incidents

Who we are

Join us

Our blog

Contact us