OUR SERVICESInformation Security & Cyber Security

Less risk
exposure

The global process of digital transformation, implies a constant adaptation of policies, processes and information systems, as well as in the workers’ own mindset. In the security domain, organizations must be prepared for security incidents seeking a secure digital environment, increasingly resilient and with less risk exposure.

Information Security & Cyber Security Compliance is needed to ensure the accurate execution of your business model and they must go hand in hand.

What we do

We provide Information Security & Cyber Security Compliance Services for all business size, according to your compliance needs.

How we help

1
INITIAL ASSESSMENT
AND GAP ANALYSIS
  • Assessment and identification of vulnerabilities, and assess real business risks. Gap analysis between As-is situation and framework requirements.
2
DEVELOPMENT OF SECURITY
AND GOVERNANCE PROGRAM
  • Development of security and governance program, considering the framework definition and the assignment of responsibilities.
3
IMPLEMENTATION
OF ISMS
  • Implementation of Information Security Management System, including policies and procedures definition and technologic support controls.
4
PREPARATION FOR CERTIFICATION
AND FOLLOW UP
  • Preparation for certification and follow up through compliance validation and the implementation of corrective actions.

Leading to compliance with:

  • GDPR – General Data Protection Regulation
  • ISO 20000
  • ISO 27001
  • ISO 27005
  • Cybersecurity framework (NIST – National Institute of Standards and Technology)

Case studies

https://www.pahlconsulting.pt/wp-content/uploads/2021/02/cs_7-160x160.jpg
Maturity and Compliance Assessment with ISO27001
Sector: Public | Geology

Detailed evaluation of the current LNEG situation related to information security. Analysis of its maturity level and presentation of a transformation plan identifying the main initiatives to be implemented to ensure compliance, with ISO 27001, 27002 and 27005 Frameworks.
https://www.pahlconsulting.pt/wp-content/uploads/2021/02/cs_8-160x160.jpg
Implementation of Information Security Management System (ISMS)
Sector: Public | Aviation Control

Assessment of initial situation and evaluation of client’s maturity for implementation of an Information Security Management System compliant with ISO27001, NIST, GDPR and aligned with the digital transformation Company Strategy.
https://www.pahlconsulting.pt/wp-content/uploads/2021/02/cs_9-160x160.jpg
GDPR Compliance assessment
Sector: Public | Education

Assessment for characterization of initial maturity level and definition of a transformation plan to ensure compliance with General Data Protection Regulations (GDPR).
https://www.pahlconsulting.pt/wp-content/uploads/2021/02/cs_10-160x160.jpg
GDPR Compliance quick assessment
Sector: Sports

Quick assessment for identification of non-conformities, characterization of maturity level and definition of improvement actions to ensure compliance with General Data Protection Regulations (GDPR).
https://www.pahlconsulting.pt/wp-content/uploads/2021/02/cs_11-160x160.jpg
Process re-engineering and identification of risks and controls based on operational and information security risks
Sector: Insurance |Life Insurance

Operational support for the documentation of business processes its risks/ controls, considering different risk types (Information Security, Compliance, Operational Risk) through the application of a methodology for gathering information on the implementation of internal processes, reviewing them and identifying opportunities for improvement.
https://www.pahlconsulting.pt/wp-content/uploads/2021/02/cs_12-160x160.jpg
Implementation of the Risk Management Model and GRC Solution
Sector: Insurance |Life Insurance

Definition of Risk Management Model and implementation of its Governance, Risk & Compliance Solution in an Insurance Company, in Spain. In this project we were responsible for process design, risk characterization (Operational and Information Security risks), definition of TOP 10 risks, definition of dashboards and ensure GDPR Compliance.
https://www.pahlconsulting.pt/wp-content/uploads/2021/02/cs_13-160x160.jpg
Installation, Configuration and Training of a GRC Solution
Sector: Public

Installation, configuration and training of an Internal Control Software, in Dubai, considering different topics of a Risk Management Global Model, within the components of Risk Management (Information Security, GDPR, Operational and Compliance), policies, procedures, regulations, incidents and Internal Audit Process.

Get in touch

Come and visit our quarters or simply send us an email anytime you want. Your contact bring us together.
Address
Edifício Tejo
Rua Qta. do Pinheiro 16,
2790-143 Carnaxide
Call us
+351 218 622 040
Email
geral@pahlconsulting.pt