The Charges
Awarded
• Mapping the maturity of the Information Security Management System (ISMS) and cybersecurity controls, considering new regulations and best market practices, especially in the new context of work virtualization, use of home office and cloud resources computing.
• Establish and participate in Information Security Committees with recommendations to prevent and apply the incident response plan.
• Support in the implementation and updates of the Information Security Management System.
• Adequacy of Policies, Rules and Procedures according to new regulations (in particular cyber security), as well as the best practices of the ISOs 27.000 and 31.000 ABNT family, COBIT, ITIL, NIST, PCI practices, among others.
• Maturity Assessment according to Sectorial Regulation in Information Security: ANEEL RN nº 964/2021, ANATEL RN nº 740/2020, CVM Instruction nº 612/201, CMN Resolution nº 4.893/2021; BCB Resolution No. 85/2021, SUSEP Circular No. 638/2021, among others.
• Support in Information Security awareness campaigns.
• Acting in the prevention and response to security incidents (SI & DPO) and in the development of incident response protocols.
• Evaluation of third parties/partners based on IS, LGPD and Business Continuity controls.
• Application of Legal Design and Visual Law techniques in deliveries.