Get start now      Contact Sales
Contact us

By industry

By reglamentation
    orm_icon

     

    		 Operational risk management

    Easily identify, measure, control and monitor the operational risks of your organization→
    isms-icon

     

    		 Information
    security risks

    Ensures the confidentiality, integrity and availability of your information assets →
    compliance_icon-16

     

    		 Normative
    compliance

    Keep track of all regulations and regulations that your organization must comply with →
    aml-17

     

    		 Anti-Money Laundering

    Easily identify, establish controls and monitor AML risks→
    icono_auditoria

     

    		 Audit

    Improve your internal audit processes, support regulatory compliance, and generate value for your organization through continuous improvement →

    Blog

    Keep informed about everything you need to know regarding integral risk management and ML/TF fraud prevention.

    Resources

    Events

    Check out the upcoming events and keep up with us.

     
      how-to-achieve-effective-communication-in-risk-management

      Next class: How to achieve effective communication in risk management Wednesday, May 22nd, 9:00 a.m. GMT-5.

      Contact us

      By industry

      By reglamentation
        orm_icon

         

        		 Operational risk management

        Easily identify, measure, control and monitor the operational risks of your organization →
        isms-icon

         

        		 Information
        security risks

        Ensures the confidentiality, integrity and availability of your information assets →
        compliance_icon-16

         

        		 Normative
        compliance

        Keep track of all regulations and regulations that your organization must comply with →
        aml-17

         

        		 Anti-Money Laundering

        Easily identify, establish controls, and monitor AML risks→
        icono_auditoria

         

        		 Audit

        Improve your internal audit processes, support regulatory compliance, and generate value for your organization through continuous improvement→

        Blog

        Keep informed about everything you need to know regarding integral risk management and ML/TF fraud prevention.

        Resources

        Events

        Check out the upcoming events and keep up with us.
          how-to-achieve-effective-communication-in-risk-management

          Next class: How to achieve effective communication in risk management Wednesday, May 22nd, 9:00 a.m. GMT-5.

          Pirani supports you to comply with 

          ISO 27001 standard

          With this solution you can easily and adequately identify and manage the information assets of your organization as well as the risks to which they may be exposed.

          Try Pirani for free→
          2img_pgn_reglamentacion
          They trust us to easily manage the risks associated with the information security of their companies
          acciones_valores-1
          seguros-confianza
          financiera-comultrasan
          Banco_Pichincha
          bmc
          accion_fiduciaria
          Seguros-Mundial
          gt_continental
          ACH
          Logo-Banco-Credifinanciera
          img_vertical_pirani_experts

          ISO 27001 standard

          This international standard was created to provide organizations with a consistent model to establish, implement, monitor, review and maintain an Information Security Management System (ISMS).
          ISO 27001 was published in 2005 and was updated in 2013, it can be implemented in any organization, regardless of its industry or size, and it is a certifiable standard, which in addition to allowing the protection of information against threats , events and incidents that put the operation and business continuity at risk, its implementation generates greater trust among employees, customers and suppliers.

          What is the ISO 27001 standard?

          ISO 27001 main objective is to guarantee the confidentiality, integrity and availability of information and to do so, it proposes the implementation of an Information Security Management System (ISMS) that allows both risk management and the management of risks. information assets that the company has.

          And a technological solution such as ISMS Suite helps companies to properly and simply manage both their assets and the risks and incidents they may have in information security.

          How to implement an ISMS based on the ISO 27001 standard? 

          According to what the standard proposes, to implement an ISMS the following stages must be met

          1. Define the Information Security Policy.
          2. Define the scope of the ISMS.
          3. Do the risk analysis, that is, identify the information assets (make an inventory) and define what are the threats and vulnerabilities to which they are exposed.
          4. Manage risks, that is, after they have been identified, they must be evaluated, treated and defined action plans.
          5. Select the control domains of the standard that are applicable.
          6. Declare the applicability of the control domains.
          7. Review of the ISMS in order to improve it and keep it updated.

          ISO 27001 control domains

          To manage the risks and information assets of the organization in a comprehensive and appropriate way, ISO 27001 establishes 14 control domains that must be taken into account when implementing an ISMS:

          1. Policies.
          2. Organization.
          3. Human Resources.
          4. Asset Management.
          5. Access control.
          6. Cryptography.
          7. Physical and environmental security.
          8. Security in operations.
          9. Communications security.
          10. Systems acquisition, development and maintenance.
          11. Relationship with suppliers.
          12. Incident Management.
          13. Information security in business continuity.
          14. Compliance.

          Manage information security risks with Pirani
           Learn how we help you by requesting a tour of our tool.
          Contact sales

          Advantages of implementing the ISO 27001 standard

          check_onboarding

          Adequate management of information security risks to prevent them from materializing or generating large impacts.

          check_onboarding

          Commitment by senior management to guarantee the confidentiality, integrity and availability of the information.

          check_onboarding

          Updating and continuous improvement of the system to face new risks that threaten information security.

          check_onboarding

          Greater trust and credibility on the part of the different interest groups.

          How do we support organizations to comply this standard?

          Pirani allows companies to:

          Implement good information security practices.
          Easily document your information assets and find out what their level of criticality is.
          Register the risks, threats and vulnerabilities to which they are exposed. 
          Record the events or incidents detected, analyze them and execute action plans.
          Preserve the confidentiality, integrity and availability of the information.
          Relate the different information assets to processes, areas and managers.
          Generate and download reports in an agile way to present to regulatory entities.
          img_pirani_starter3
          Compliance-mockup

          Start using Pirani for free

          And find out how we can help you make risk management in your organization a simpler and more efficient process.

          Get started

          Follow Pirani

          Contact us

          Icono-contacto-ventasContact sales →

          whatsapp_iconContact number:
           +1 (786) 684 7599

          If you are a customer request help here →

          icono-somos-pirani About Us → 

          help-center-icono Help Center→

          BV_Cert_ISO-IEC-27001-2013

           

          Copyright© 2018 - 2024 Company, Inc. All Rights Reserved.