Cybersecurity and risk management

Se faire accompagner par un expert de l’ISO/IEC 27001

Vous devez démontrer à vos clients, existants ou potentiels, que la gestion des technologies de l’information et la sécurité de l’information sont correctement effectuées au sein de votre organisation ? Que ce soit via un diagnostic ou audit (à blanc, interne), AFNOR BAO et ses experts opérationnels sauront vous guider…

Cybersecurity and IS risk training

Attacks on information systems have increased exponentially in recent times: malware, ransomware, phishing… Like the Ryuk collective, hackers are redoubling their efforts and imagination to intensify their actions. One flaw, and your IS collapses, jeopardizing your digital strategy, your digital transformation plan and your e-reputation! That’s why it’s vital to remain vigilant and constantly upgrade your level of security.

In the company, information security is considered as part of a management system, as for quality, the environment or occupational health, based on the principle of continuous improvement and the PDCA cycle (plan, do, check, act). An incident may occur, but you’ll be equipped to deal with it, limit the damage and learn from it. To consolidate your information security management system (ISMS) on the basis of ISO/IEC 27001, the leading standard in the field, or to perfect your security culture and pass it on to others, AFNOR Compétences offers several training courses:

• Main points of vigilance in cybersecurity
• Training to prevent and manage cyber attacks
• IT risk audit training
• Applying the EBIOS Risk Manager method
• Implementing an ISMS in accordance with ISO/IEC 27001

Get your ISMS and cybersecurity certified

Are you a company, public authority or IT services provider? The information system is at the heart of your concerns. In the face of cyberthreats, you need to demonstrate that you are taking all the necessary steps to identify, define and limit the risks, and that you are capable of taking appropriate protective measures for the information under your responsibility. Digital security also means digital sovereignty!
AFNOR Certification provides you with objective signs of recognition to enhance your technical expertise and your information security management system (ISMS).
The ultimate goal is to make your customers feel confident, and thus attract new ones.

• Apply for the Cyber Expert label
• EBIOS Risk Manager certification
• Apply for ISO/IEC 27001 certification
• Request a TISAX automotive evaluation

Developing voluntary cybersecurity standards

AFNOR runs a standardization committee dedicated to cybersecurity issues, bringing together professionals who deal with these issues on a daily basis in their companies. The voluntary standards they have co-written define reference methods, best practices and a common language for effective information systems security. Join them!

• Commitment to cybersecurity standardization
• Download the AFNOR guide “Voluntary standards and innovative approaches to cybersecurity
• Obtain the AFNOR SPEC 2208 guide “Continuity of activity and resilience of organizations in the event of prolonged IS unavailability, particularly following a cyber attack“.