Business Unit Security Services
"La sicurezza è un processo, non un prodotto”
(Bruce Schneier)
Security Knowledge
.
Information is a company good background, representing a value for organization and need to be properly protected. Every form informations are represented, and every they are divided and stored, had to be right protected. Every modern organization activity depend heavily from information’s and their management, and this dependencies grow every day.
RETIS provide strategic support and operational activity services with possibility to manage end-to-end the classic security lifecycle, from analysis to development solutions, from develop to risk evaluation, from managed security to security assessment, all steps indispensables in order to reach and keep a security level due institutional mission and business for every organization. RETIS Business Unit Security have the purpose to furnish an high added value by ethical principles as ethical, independencies and professional that belong to the company cultural background
Engineering Product Knowledge
.
Thanks to high level partnership about solutions and market brand leader RETIS con focus the offert both with effectiveness and technical and professional coverage for principal business segent: Security Compliance, Web & Email Security, SIEM Integration and Application Security. For each area above RETIS identify referenced solutions chooses through an adequately benchmarking related to market and technology innovations exigencies.
Thanks to internal resources quality and to theyr continue professional grown, RETIS is able to make available experience and important case studies and furnish very high technologic and strategic profiles services on every main line for the organizational model.
The Security Team professionists boast in fact many experience years “on field” and manage security certifications (regarding products or services) released by accredited bodies and recognize at national and international levels (CISA (ISACA), CISSP (ISC2), Lead Auditor ISO 27001:2005, OPST, CEH about information security services, Checkpoint, Juniper, Stonesoft, RSA, Microsoft, Arcsight, Imperva, etc. relatives to product certifications)
Organizational model:
Governance
The business security policy pass throught the realization of o Security Governance model, able to furnish the decisional levers needed in order to support the business choices related to the regulations and to infrastructural and procedural risks
Governance | Engineering
Innovative and high added value security solutions project, centered toward context and company’s government exigencies, specific to solve complex exigence, customizable on servicese configurations for miscellaneous environments.
Engineering | Integration
A good solution had to maximize her value towards the concern context, integrate herself with the actual situation and improving the process and production platform effectiveness.
Assessment
A good implementation need periodic assessment about real security actual level on producion systems or in release.
A good government plan gain value if is integrated with the real vulnerability and exposure state of every critical platform.
Operation
The operative processes management and security infrastructure pass through monitoring and specialist support activity on all concern technologies, ‘till organizing a proper Security Operation Center or SOC.
model