Avaliance: Your trusted partner in digital transformation
Avaliance is an information systems consultancy that has been reaping tangible benefits from its customers' transformations for 15 years. Our in-depth knowledge of the business and its realities, our human values, combined with the very best in technology, enable us to offer 360-degree support to CIOs of all sizes.
Securing information systems: a critical priority amid rising threats.
At a time when digital uses are exploding and more and more employees are working from home, the need to secure IT systems has never been more pressing. The daily evolution of attacks and the growing inventiveness of hackers reveal the importance of maintaining an irreproachable level of security for information systems.
"The daily evolution of attacks and the growing inventiveness of hackers reveal the importance of maintaining an irreproachable level of security for one's information system."
Our super-consultants to serve Safety!
Relying on international standards and methodologies (ISO27k, CISA, PCI-DSS, ISAE...), our seasoned consultants are at the forefront of the fightback, always ready for action! We support you from A to Z in setting up your SSI governance, implementing your security operations, and helping you define your security policy so that it is in line with your business objectives, and your regulatory and legal constraints.
Technical AND/OR organizational audit
- Compliance, vulnerability and architecture audits, including penetration tests and simulated attacks to assess IS security.
- Implementation of performance and safety optimization measures
- Verification that the company complies with procedures, laws and regulations
- Definition of a quality level for ISS management within a company.
- Integration of best practices from functional and technical standards (e.g. ISO 27001)
- User awareness
IS security management
- ISMS (Information Security Management System): the implementation of all information security management processes in accordance with ISO 27k standards.
- PSSI (Politique de Sécurité du Système d'Information - Information System Security Policy): drafting of a reference document to monitor compliance with security rules and make all users aware of the associated risks.
- Risk analysis (EBIOS, MEHARI, ISO27k): identification of assets at risk, anticipation of risk scenarios and associated impact, and treatment to protect against threats that could have an impact on security.
- IS governance: implementation of IS security governance to check compliance with IS security rules and the quality of its integration
IT security consulting and project management.
- Continuity management: creation of Business Continuity Plans (BCP) and Business Resumption Plans (BRP) to ensure that information is safeguarded in the event of a disaster.
- Authorization management: advice on implementing an authorization management policy to secure IT infrastructure, reduce management costs and improve employee service quality.
- IS security incident management: for extremely rapid restoration of services.
- Design IS security architectures: meet the functional and technical needs expressed by companies, taking into account the various known constraints.