Search
Close this search box.

Are you the victim of a security incident? Contact our CERT

Expertise

GDPR compliance coaching and DPO assistance

Achieve and maintain compliance

A 360° approach enabling you to reach, at your own pace, the level of compliance adapted to your environment.

Our offer

Foundation: Charting the course to compliance

  • Identify the personal data processing carried out thanks to a detailed mapping.
  • Evaluate the actual level of compliance through in-depth gap analyses.
  • Establish the operational and prioritized compliance
    program.

Build: Getting into compliance

  • Implement the compliance program at the technical (cybersecurity) and organizational (procedures, tools, processing compliance) levels.
  • Define the governance, the actors, the bodies, the dashboards, the piloting tools; frame the new projects (Privacy by Design); structure the run and the audit.
  • Support the change: building an effective awareness program
    and training the actors of your compliance.

... pour tous les acteurs de la crise

Pour les équipes IT :

  • Entrainer les équipes IT de manière réaliste

  • Adapter le scénario aux réactions des joueurs (investigations)

Pour les équipes COMEX :

  • Faire prendre conscience aux équipes décisionnelles de l’impact d’une attaque sur leur matériel

  • Faire prendre conscience des décisions du comex (faut-il isoler ou pas?) et leurs conséquences sur leur activité

Solutionner la double temporalité entre le temps d’investigations et les temps des décisions organisationnelles :

  • Indices de type escape game pour accélérer le jeu sur M&NTIS Platform
  • Accélérer les stimuli d’attaques techniques

Solution d'adversary emulation, M&NTIS Platform permet d'évaluer sa capacité de défense face à un ensemble de menaces.

M&NTIS Platform exécute des scénarios d’attaque complexes en environnement IT simulé en implémentant le concept de kill chain, ainsi qu’un catalogue d’attaques unitaires reposant sur le référentiel MITRE ATT&CK®.

M&NTIS Platform permet de tester l’efficacité métier de solutions de défense :

  • Produits : EDR, NDR, SIEM, XDR, SOAR, … 
  • Architectures de supervision de sécurité 
  • Equipes SOC et CERT

The benefits

A controlled compliance with a prioritized roadmap

A transfer of skills leading to autonomy

Experts to answer your operational questions

Rejouer l'exercice sur d'autres scénarios

Our value proposition

Multiple and complementary expertises: legal experts, engineers experts...

Proven tools and approaches

Services and approaches adapted to your objectives and context

Find the content of this page in PDF format:

Would you like more information about this offer?

Almond commits itself to ensure that the collection and processing of your data, carried out from the site https://almond.eu/, are in conformity with the General Data Protection Regulation (GDPR) and with the modified law n° 78-17 of January 6, 1978, relating to the protection of personal data. The information collected on this form is recorded in a file computerized by Almond, in order to answer the requests for information. You can access the data concerning you, ask for their correction or their deletion. You also have a right of opposition, and a right to limit the processing of your data (see cnil.fr for more information on your rights). You can exercise your rights by contacting Almond's Data Protection Officer at the following address: [email protected]. Your data will be kept within the European Union, in accordance with the regulations in force.