The longevity of your company is intimately linked to its protection against incidents (aggressions and dysfunctions), whether they affect its wealth, staff or immaterial property.
étic supports you in all your RISK MANAGEMENT projects, from the business management level to the technical realisation. The safety measures that have to be implemented are identified, given a priority and the cost calculated.
RISK MANAGEMENT - A GLOBAL CONCEPT
The protection of your organisation needs a global approach, by taking a transversal and multidisciplinary view of all the potential risks and their interaction, to reach a solution that will fully protect it, at whatever level: human, economic, sanitarian, structural, technical, ecologic...
étic's approach is centred, through the synergy of its competences and a global vision, on what determines the success of every risk management system: the correlation between technologies, organisational and human factors.
THE MANAGEMENT OF YOUR RISKS - COMPONENTS
Whereas safety aims to protect against wilful acts (burglaries, damages, attacks), security aims to guard you against unintended incidents (force majeure, neglect...).
étic takes a systemic interest in all the relevant components on which the global safeguard / security of your organisation relies:
Physical safety and security
The employees of étic master all the issues related to the safety of equipment and people (fire risk, electrical hazards, walls and glazing, access controls, alarms, intervention procedures, security agents, video surveillance...)
Information safety & security
étic, in the framework of protecting the confidentiality, availability and integrity of information, ensures the security of your :
In its global approach, étic also considers each of the parameters that will permit the business continuity: protection of the knowledge and know-how, the competences, the processes.
OUR PROCESSES MADE TO YOUR MEASURE
étic not only adapts its approach to the risks incurred by your organisation, their impact on your activities, but also to the risks that you judge acceptable. To do so, four phases are needed:
a risk management strategy and concept
the control of the implementation
In addition to one or several preparatory meetings where you outline your objectives in terms of risk management, the employees of étic make an exhaustive analysis of these risks, thus meeting the real and specific needs of your organisation.
The previously established audit leads to:
a summary of the measures necessary to reduce the resulting risks and/or their impact
an analysis of their level of acceptability
the establishment of specifications for a risk reduction system that has to be implemented
Independence and impartiality
étic is an independent company whose capital is wholly owned by its associates. Furthermore, to avoid all risk of influence when it conceives a system or issues recommendations, étic does not commercialise any material or software. This financial independence and impartiality in the choice of providers guarantee the safeguard and protection of your interests.
étic is empowered to manage the whole implementation of your risk management system.
Its assignments hinge on:
the implementation of adequate and proven safety devices
tenders from different suppliers
the planning of the installations
the organisation of conformity control tests
the maintenance of the installations
In the context of its user training process, and keeping in mind the objective to minimise the impacts of a potential internal or external risk to your organisation, étic establishes and formalises:
your warning and disaster relief plans, offering answers adapted to exceptional events
your BCP (Business Continuity Plan) that will avoid service interruptions
your DRP (Disaster Recovery Plan) making, if need be, the recovery of the activity possible
étic also offers to accompany you in your Quality Assurance procedures, such as the certification to the ISO 27000 suits (international standards that define the requirements of an information safety management system) and ISO 31000 standards (international standards that define the requirements of a risk management system).
To go even further, étic has created the REDSAFE® label in November 2015.
Based on a rigorous and innovative diagnostic procedure of the different security domains related to the operation of the organisation that is audited, étic can :
present a clear, detailed and complete picture of the risks the organisation is exposed to and the level of risk protection it actually has
evaluate the evolution of the protection level in relation to the specific threats of the organisation
establish an improvement strategy describing the measures that have to be applied, presented by order of priority, to transform partial solutions into an integrated risk management system
étic is liable for the results of its analysis by certifying the security level reached by the audited organisation on a scale of 3 certifying levels and subsequently supports the certified entity when they renegociate with the insurance companies to reduce their risk and safety of persons and property coverage plans.