Secure your websites and networks – Reassure your customers
The delegation of IT resources to a third party, such as a migration to the cloud, may lead to a loss of control over the information system. This can occur in a complex environment, framed by a significant regulatory context: CNIL, E-Privacy, DMP, HDS, SoX, Bale III, PCI, ISO 2700X/27001, HIPAA, SAS70.
For the customer, the challenge of the cloud and extended and distributed computing is to be able to control its outsourced data by controlling SLAs and service quality through the confidentiality and integrity of its data.
ITrust Security Metrics is a service offered by ITrust to independently establish the security level of an architecture according to criteria and objectives based on international standards.
The principle is to scan, thanks to IKare, the company’s websites and/or networks, in order to detect flaws and vulnerabilities and to jointly conduct a security policy, thanks to the support of ITrust security engineers.
A label is then generated and posted on the company’s website to prove to its customers the rigorous efforts it undertakes to maintain a maximum level of security.
- Identification of vulnerabilities
- Supervision of system updates
- Verification of security and integrity controls
- Detailed reporting with the IKare solution
- Conducting “on-demand” scans to ensure correction
- Traceability of corrections made
- Organisational support by specialised safety engineers
- Strengthen your customers’ confidence in your efforts to maintain a maximum level of security
Description of the label
It is based on the one hand on the SaaS software solution, IKare (Security Monitoring developed by ITrust, labelled by Oséo), for vulnerability scans and security controls, and on the other hand on the ISO 27001 and 27002 standards for good management practices.
The ITrust Security Metrics label guarantees that the information system is configured and operated according to the best security practices and complies with regulations and the state of the art.
ITrust Security Metrics is available in four levels of certification: