Services Audit

MT-C is member of various organization and is positioned as an independent auditor for various types of missions.

This independence ensures that the information you get is relevant and reliable.

Data Protection and Enabling Business Continuity

Business continuity management (BCM) is a plan to be executed to continue your operations if your company is affected by an external or internal events : fire, storm, flood, utility outage, civil disorder, ...

Developing a Business Continuity Plan (BCP) will give the insurance that you have a comprehensive and systematic process of protection, response and recovery.

This can covers:

business recovery for business processes, services and activities
disaster recovery for ICT assets
emergency response for people, premises and utilities
crisis management for the protection of intangible assets, such as brand, reputation, image

The conjunction of an efficient guidance and high level of expertise in technologies will play a large role in assuring that your business is resilient in a changeable business environment.

The challenges is to make sure that this plan is applicable and tested. Applying a BCP is one thing, once done the objective is to being able to move back to the normal.

A Business Continuity Planning is structured by different steps :

Analysis

This step consists of impact analysis, threat analysis, impact scenarios and recovery requirements
- In the Business impact analysis, we will separate which is critical and which is not critical for the business. For each critical function of the business, the two following values will be set :
  - Recovery Point Objective (RPO) – the acceptable latency of data that will not be recovered
  - Recovery Time Objective (RTO) – the acceptable amount of time to restore the function
- Threat analysis
  - Establish a list of threats that can affect your organization (flood, epidemic, fire, earthquake, ...)
- Impact scenarios
  - List the impact on your organization if your business is faced to a threat. This can be a site, a building, a floor, ...
- Recovery requirements
  - Inventory the list of key resources and assets required to rebuild your organization: manual workaround, desk, human resources, production lines, logistic, ...
Solution Design

This design the most cost effective disaster recovery solutions that will meet the main requirements of the impact analysis phase.
Implementation

This involves the implementation of the solution design : material acquisitions.
Testing and organizational acceptance

The goal of this phase is to achieve organizational acceptance that the solution satisfies the recovery requirements.
Maintenance

Periodic maintenance cycle maintenance of the BCP manual, this confirms will review if the BCP is still accurate, the awareness of the staff.

Testing and verification of technical solutions and recovery procedures will be validated Information systems audit.

Information systems audit

We gives you a clear snapshot of your security and information systems with 100% independence and impartiality. The audit always comes with specific, applicable recommendations, each of which receives a priority and applicability rating.

Internal control and risk management

We can help you to implement Governance and Internal Control processes for your information systems, within a defined area of your company. We study the operational efficiency and make a risk assessment of this area.

To that end, we use the best practices for your activity, your industry and your requirements.

Actuarial services

We join forces with reliable partners to provide you actuarial services which are tailored to your needs. MT-C works together with its partners to model the financial impact of the risks defined during a previous analysis.

How we can help you

Our methodologies applies both the generic “Plan-Do-Check-Act” (PDCA), Risk Management like EBIOS model and other standards and methodologies, including:

British Standard 25777:2008, ICT continuity management – Code of practice, BSI
ISO 27001:2005, Information security management systems
ISO 27002:2005, formerly ISO 17799
ITIL v2 & v3 (IT service continuity management)
Cobit 4.1 (DS4 – Ensure continuous services)

Audit

Data Protection and Enabling Business Continuity

A Business Continuity Planning is structured by different steps :

Analysis

Solution Design

Implementation

Testing and organizational acceptance

Maintenance

Information systems audit

Internal control and risk management

Actuarial services

How we can help you