Login       Contact Sales 
Get started

By industry

By reglamentation
orm_icon

 

 Operational risk management

Easily identify, measure, control and monitor the operational risks of your organization→
isms-icon

 

 Information
security risks

Ensures the confidentiality, integrity and availability of your information assets →
compliance_icon-16

 

 Normative
compliance

Keep track of all regulations and regulations that your organization must comply with →
aml-17

 

 Money laundering risk management

Easily identify, establish controls and monitor AML risks→
icono_auditoria

 

 Audit

Improve your internal audit processes, support regulatory compliance, and generate value for your organization through continuous improvement →

Blog

Keep informed about everything you need to know regarding integral risk management and ML/TF fraud prevention.

Resources

Events

NEW FREE WEBINAR: First steps in risk management

Check out the upcoming events and keep up with us.

 
    What-is-risk-management-Pirani

    Next class: What is risk management? Wednesday, September 27th

    Get started

    By industry

    By reglamentation
    orm_icon

     

    		 Operational risk management

    Easily identify, measure, control and monitor the operational risks of your organization →
    isms-icon

     

    		 Information
    security risks

    Ensures the confidentiality, integrity and availability of your information assets →
    compliance_icon-16

     

    		 Normative
    compliance

    Keep track of all regulations and regulations that your organization must comply with →
    aml-17

     

    		 Money laundering risk management

    Easily identify, establish controls and monitor AML risks→
    icono_auditoria

     

    		 Audit

    Improve your internal audit processes, support regulatory compliance, and generate value for your organization through continuous improvement→

    Blog

    Keep informed about everything you need to know regarding integral risk management and ML/TF fraud prevention.

    Resources

    Events

    NEW FREE WEBINAR: First steps in risk management

    Check out the upcoming events and keep up with us.
      What-is-risk-management-Pirani

      Next class: What is risk management? Wednesday, September 27th

      Pirani supports you to comply with 

      ISO 27001 standard

      With this solution you can easily and adequately identify and manage the information assets of your organization as well as the risks to which they may be exposed.

      Try Pirani free for 15-days →
      2img_pgn_reglamentacion
      They trust us to easily manage the risks associated with the information security of their companies
      acciones_valores-1
      seguros-confianza
      financiera-comultrasan
      Banco_Pichincha
      bmc
      accion_fiduciaria
      Seguros-Mundial
      gt_continental
      ACH
      Logo-Banco-Credifinanciera
      img_vertical_pirani_experts

      ISO 27001 standard

      This international standard was created to provide organizations with a consistent model to establish, implement, monitor, review and maintain an Information Security Management System (ISMS).
      ISO 27001 was published in 2005 and was updated in 2013, it can be implemented in any organization, regardless of its industry or size, and it is a certifiable standard, which in addition to allowing the protection of information against threats , events and incidents that put the operation and business continuity at risk, its implementation generates greater trust among employees, customers and suppliers.

      What is the ISO 27001 standard?

      ISO 27001 main objective is to guarantee the confidentiality, integrity and availability of information and to do so, it proposes the implementation of an Information Security Management System (ISMS) that allows both risk management and the management of risks. information assets that the company has.

      And a technological solution such as ISMS Suite helps companies to properly and simply manage both their assets and the risks and incidents they may have in information security.

      Request our free demo →

      How to implement an ISMS based on the ISO 27001 standard? 

      According to what the standard proposes, to implement an ISMS the following stages must be met

      1. Define the Information Security Policy.
      2. Define the scope of the ISMS.
      3. Do the risk analysis, that is, identify the information assets (make an inventory) and define what are the threats and vulnerabilities to which they are exposed.
      4. Manage risks, that is, after they have been identified, they must be evaluated, treated and defined action plans.
      5. Select the control domains of the standard that are applicable.
      6. Declare the applicability of the control domains.
      7. Review of the ISMS in order to improve it and keep it updated.

      ISO 27001 control domains

      To manage the risks and information assets of the organization in a comprehensive and appropriate way, ISO 27001 establishes 14 control domains that must be taken into account when implementing an ISMS:

      1. Policies.
      2. Organization.
      3. Human Resources.
      4. Asset Management.
      5. Access control.
      6. Cryptography.
      7. Physical and environmental security.
      8. Security in operations.
      9. Communications security.
      10. Systems acquisition, development and maintenance.
      11. Relationship with suppliers.
      12. Incident Management.
      13. Information security in business continuity.
      14. Compliance.

      Manage information security risks with Pirani
       Learn how we help you by requesting a tour of our tool.
      Contact sales

      Advantages of implementing the ISO 27001 standard

      check_onboarding

      Adequate management of information security risks to prevent them from materializing or generating large impacts.

      check_onboarding

      Commitment by senior management to guarantee the confidentiality, integrity and availability of the information.

      check_onboarding

      Updating and continuous improvement of the system to face new risks that threaten information security.

      check_onboarding

      Greater trust and credibility on the part of the different interest groups.

      How do we support organizations to comply this standard?

      Pirani allows companies to:

      Implement good information security practices.
      Easily document your information assets and find out what their level of criticality is.
      Register the risks, threats and vulnerabilities to which they are exposed. 
      Record the events or incidents detected, analyze them and execute action plans.
      Preserve the confidentiality, integrity and availability of the information.
      Relate the different information assets to processes, areas and managers.
      Generate and download reports in an agile way to present to regulatory entities.
      img_pirani_starter3
      Compliance-mockup

      Try Pirani free for 15-days

      And find out how we can help you make risk management in your organization a simpler and more efficient process.

      Get started

      Follow Pirani

      Contact us

      Icono-contacto-ventasContact sales →

      whatsapp_iconContact number:
       +1 (786) 684 7599

      soporte-1If you are a customer request help here →

      icono-somos-pirani About Us → 

      help-center-icono Help Center→

      BV_Cert_ISO-IEC-27001-2013

       

      Copyright© 2018 Company, Inc. All Rights Reserved.