The evolution of the market requires the business and technology area to provide increasingly innovative, quality and timely (time-to-market) services that are also secure. The ICT Management (CIO) and the Security Management (CISO) must guarantee organisational quality, effectiveness and efficiency of processes and services, management of cyber security risks, control of outsourcers, full satisfaction of Business and Customers.
Security Lab Advisory SAGL supports all organisations in the preparation of the ICT Management & Cyber Security Governance model, providing its many years of experience and expertise on international methodologies and best practices (COBIT, ITIL, NIST) and, if required, accompanying the organisation to ISO 27001 Certification.
All organisations must prepare themselves in time to face a disastrous incident and crisis situation, in order to be ready to ensure, however, a minimum level of service and the survival of the organisation itself.Security Lab Advisory SAGL supports all organisations in the preparation of the Business ContinuityPlan and the definition and implementation of an adequate Business Continuity Management System that, if required by the organisation, can obtain ISO 22301 Certification.
Security Lab Advisory SAGL's multi-disciplinary team of consultants supports organisations in building their own management system, adapted to the size and particularities of the organisation ('tailor-made suit'), in order to obtain the international certification of interest:
Information Security and Privacy (ISO 27001, ISO 27017, ISO 27018, ISO 27701),
Business Continuity (ISO 22301),
IT Service Management (ISO 20000),
Worker Safety (ISO 45001),
Environmental Protection (ISO 14001),
Quality Management (ISO 9001),
Social Accountability (SA 8000).
Security Lab Advisory SAGL provides its technological, organisational, management and legal expertise and experience in numerous tailor-made projects to support all organisations in achieving full compliance with data protection regulations: Federal Data Protection Act (LPD) and EU Regulation 2016/679 (GDPR).READ MORE
Under the new data protection regulations, some organisations require a 'Data Protection Officer' or 'Data Protection Advisor'.
In order to ensure multidisciplinary expertise and the absence of conflicts of interest within the organisation, the regulations stipulate that an external consultant may also be appointed.
Security Lab Advisory SAGL offers a DPO Service Contract, with specific assignment to the leader of the multidisciplinary team of consultants, in order to fulfil, in compliance with the principle of independence, all the functions and tasks required by the regulations (LPD/GDPR).
FINMA regulations and circulars require all players in the financial sector to apply a management and control model for Operational Risk (Circular 2008/21), Cyber Security and Outsourced IT Services (Circular 2018/3). Our many years of knowledge of the financial sector, multiple project experiences, multidisciplinary expertise and knowledge of international best practices and methodologies in operational risk assessment, cyber security management, IT service management and IT outsourcer control are brought together to support Ticino's banks and fiduciaries in achieving full compliance with the requirements imposed by the regulator (FINMA).