IT Security Offering Information Systems Security

Transcription

1 IT Security Offering Information Systems Security

2 Who are we? NewPoint is a young, dynamic and modern multinational consulting company with a successful trackrecord and a team of multi-discipline IT professionals. NewPoint Spanish ICT Consultant is a multinational consulting company with an international presence and over seven years' experience in the market. We have an excellent reputation in the ICT sector and collaborate with the main companies in each different area of business activity. Technology Services At NewPoint we offer a wide range of structured ICT services in every area of activity: Systems and Communications, Security, Business Intelligence, Customised Development, etc. Our Senior Management leads the company in an approach that is firmly orientated around the client. Professional team Team of over 150 highly qualified professionals and collaborators trained in various forms of information technology, with extensive experience in working with clients in different sectors of business activity. Our knowledge and training in best market practices guarantees our success in the ICT projects we undertake. Client-focused approach We are firmly orientated around the needs of our clients, providing efficiency, effectiveness and productivity, meeting their technological needs and offering flexible and scalable solutions. And all of this is achieved with innovation as a priority. Financial Strength We have a healthy financial position as a result of our firm belief in reinvestment, and the company has seen sustained growth in turnover since its beginnings due to an internal structure that adapts to the actual needs of clients, with a focus on controlling costs. At NewPoint Continued training we firmly believe that success in technology is based, to a certain degree, on continued training in information technology. For this reason we have developed an extensive technological training and capacity-building programme (+15% total) for all NewPoint employees

3 What do we do? ICT Services ICT Services Business Intelligence IT Security Systems and Communications Software Development ITC Cloud Computing Big Data Installations Systems / Networks Customised solutions Market studies Help Desk Data warehousing Mobility Mobile devices ICT Business Analysis Technical Support Fast Data Virtualization ICT Training Outsourcing / BPO Data Centre Services Voice / Data / Video

4 Our figures We are a consulting company with solid growth and a young, highly qualified team 29% Crecimiento en Facturación 25% 33% Formación Company growth español Education 9% 4% 17% 70% Titulados Universitarios Grado Superior Grado Medio Otros Age Average Edad 19% 38% 29% 14% < 25 años años años > 40 años Team Team 2% 8% 17% 26% 47% Alta Dirección Dirección/Comercial Consultores/Jefes Proyecto Analistas/Jefes Equipos Técnicos/Desarrollador es

5 Why Security with NewPoint? At NewPoint our team is composed of professionals with varied profiles who provide the company with different skills and approaches, guaranteeing the success of our security management services: Resource specialisation and application of best practices Use of value methods and tools Multiple approaches to projects Contributions from and collaboration with specialists in every area: IT management standards and best practice (ITIL); Security standards and regulations, ISO Security organisation and management, risk analysis. Technical security architecture; security at an infrastructure and application level, applying the best practices applicable to our clients' organisations. Multi-disciplinary team to ensure analysis and implementation capacity; expert panel (systems, technology, regulation, organisation). Experience in similar projects. Use of accelerators and analysis and installation tools, including approaches, examples and tools based on best practices. Specific method for planning, defining and installing security management systems (ISMS) according to ISO standards. Risk analysis and management tools. Technical security architecture for next generation technologies. Support for highly specialised vulnerability assessment services (including internationally renowned experts in the field of IT Security). Work plan orientated around achieving short-term tangible results, so that actions are implemented faster. Security risk analysis for business processes. Coordination with related projects: ITIL installation, Identity management, etc. Regular monitoring using committees and dashboards that can be used to analyse and review the conclusions obtained from different stages of the project. Guaranteed transfer of knowledge to our clients so that they can operate the installed model.

6 Our experience in security NewPoint has extensive experience in security and business continuity projects, applying its own methods and reference models to develop security projects, and a team of specialised consultants with the main IT Security certifications:

7 Information Security Action Lines Security Management Plans Risk Analysis and Management Security Dashboard Adaptation to legal regulations (LOPD, LSSI, ENS, etc.) ISO certification / Information Security Management System (ISMS) Perimeter Security Firewalls IPS/IDS Security Access Control NAC Security of Business Platforms Hardening Mobile Device Security Penetration Test: White Box Black Box Grey Box Code : Payment Method Security (PCI-DSS, Payment Card Industry Data Security Standard) Fraud Detection S e c u r Po i n t SGSI Automation Tool Identity and Access Management (IdM) (SIEM) Security Incident Management Access Rights (IRM) Encryption and Digital Signature Business Continuity (BCP) and Disaster Recovery (DRP) Planning ISO IT Security Outsourcing Development of Secure Applications Security Incident Management ecrime Computer crime Regulations audit (LOPD) DLP Data Loss Prevention Sentiment Analysis Digital Reputation Security Training and Awareness Security Indicators Program

8 Information Security Action Lines NewPoint structures its IT security activity along four action lines, defined according to the type of activities each involves and the specialisation necessary to carry them out. These lines are: focused on compliance, regulations and security organisation defined as the validation line for technical and organisational compliance, penetration tests and low level revisions ISMS machinery and security programs, logical security based on physical components security platforms, large market solutions

9 Information Security Action Lines Security Management Plans Risk Analysis and Management Security Dashboard Security Indicators Program Adaptation to legal regulations (LOPD, LSSI, ENS, etc.) Certification ISO Business Continuity (BCP) and Disaster Recovery (DRP) Planning ISO IT Security Outsourcing Security Training and Awareness ISMS

10 Information Security Action Lines Perimeter Security Security Access Control NAC Security of Business Platforms Hardening Mobile Device Security Development of Secure Applications ISMS Security Incident Management Security Indicators Program

11 Information Security Action Lines Penetration Test: ISMS White Box Black Box Grey Box Code : Payment Method Security (PCI-DSS, Payment Card Industry Data Security Standard) Fraud Detection ecrime Computer crime Regulations audit (LOPD)

12 Information Security Action Lines ISMS ISMS Automation Tool - SecurPoint Identity and Access Management (IdM) (SIEM) Security Incident Management Access Rights (IRM) Encryption and Digital Signature DLP Data Loss Prevention Sentiment Analysis Digital Reputation

13 Contact Further information? Luis Ángel Reinoso Tello Responsable de Seguridad Tecnológica Head of Technology Security Mobile: (34) Tel: (34) / Fax: (34)