The longevity of your company is intimately linked to its protection against incidents (aggressions and dysfunctions), whether they affect its wealth, staff or immaterial property.
 
étic supports you in all your RISK MANAGEMENT projects, from the business management level to the technical realisation. The safety measures that have to be implemented are identified, given a priority and the cost calculated.
RISK MANAGEMENT - A GLOBAL CONCEPT

 

The protection of your organisation needs a global approach, by taking a transversal and multidisciplinary view of all the potential risks and their interaction, to reach a solution that will fully protect it, at whatever level: human, economic, sanitarian, structural, technical, ecologic...

 

étic's approach is centred, through the synergy of its competences and a global vision, on what determines the success of every risk management system: the correlation between technologies, organisational and human factors.

 

 

THE MANAGEMENT OF YOUR RISKS - COMPONENTS 

 

Whereas safety aims to protect against wilful acts (burglaries, damages, attacks), security aims to guard you against unintended incidents (force majeure, neglect...).

 

étic takes a systemic interest in all the relevant components on which the global safeguard / security of your organisation relies:

 

 

Physical safety and security

 

The employees of étic master all the issues related to the safety of equipment and people (fire risk, electrical hazards, walls and glazing, access controls, alarms, intervention procedures, security agents, video surveillance...)

 

 

Information safety & security

 

étic, in the framework of protecting the confidentiality, availability and integrity of information, ensures the security of your :

 

  • computer data

  • IT infrastructure

  • paper data

 

 

Business continuity

 

In its global approach, étic also considers each of the parameters that will permit the business continuity: protection of the knowledge and know-how, the competences, the processes.

 

 

OUR PROCESSES MADE TO YOUR MEASURE

 

étic not only adapts its approach to the risks incurred by your organisation, their impact on your activities, but also to the risks that you judge acceptable. To do so, four phases are needed:

 

  • an audit

  • a risk management strategy and concept

  • the control of the implementation

  • the training

 

 

Audit

 

In addition to one or several preparatory meetings where you outline your objectives in terms of risk management, the employees of étic make an exhaustive analysis of these risks, thus meeting the real and specific needs of your organisation.

 

 

Risk management strategy & concept

 

The previously established audit leads to:

 

  • a summary of the measures necessary to reduce the resulting risks and/or their impact

  • an analysis of their level of acceptability

  • the establishment of specifications for a risk reduction system that has to be implemented

 

 

Control of the implementation

 

Independence and impartiality

 

étic is an independent company whose capital is wholly owned by its associates. Furthermore, to avoid all risk of influence when it conceives a system or issues recommendations, étic does not commercialise any material or software. This financial independence and impartiality in the choice of providers guarantee the safeguard and protection of your interests.

 

 

étic is empowered to manage the whole implementation of your risk management system.

 

Its assignments hinge on:

 

  • the implementation of adequate and proven safety devices

  • tenders from different suppliers

  • the planning of the installations

  • the organisation of conformity control tests

  • the maintenance of the installations

 

 

Training

 

In the context of its user training process, and keeping in mind the objective to minimise the impacts of a potential internal or external risk to your organisation, étic establishes and formalises:

 

  • your warning and disaster relief plans, offering answers adapted to exceptional events

  • your BCP (Business Continuity Plan) that will avoid service interruptions

  • your DRP (Disaster Recovery Plan) making, if need be, the recovery of the activity possible

 

étic also offers to accompany you in your Quality Assurance procedures, such as the certification to the ISO 27000 suits (international standards that define the requirements of an information safety management system) and ISO 31000 standards (international standards that define the requirements of a risk management system).

 

To go even further, étic has created the REDSAFE® label in November 2015.

 

Based on a rigorous and innovative diagnostic procedure of the different security domains related to the operation of the organisation that is audited, étic can : 

  • present a clear, detailed and complete picture of the risks the organisation is exposed to and the level of risk protection it actually has

  • evaluate the evolution of the protection level in relation to the specific threats of the organisation

  • establish an improvement strategy describing the measures that have to be applied, presented by order of priority, to transform partial solutions into an integrated risk management system

 

étic is liable for the results of its analysis by certifying the security level reached by the audited organisation on a scale of 3 certifying levels and subsequently supports the certified entity when they renegociate with the insurance companies to reduce their risk and safety of persons and property coverage plans.

 
 
 

étic SA - études, ingénierie et conseil  -  info@etic.sa.com  - All rights reserved - 2016 / 01 / 11

sbfi_sticker_D&F.jpg