Today, as part of the processes aimed at ensuring the security of information, it is also a priority to leverage the risk analysis on compliance with regulations, regulations and industry best practices. Only in this way can actions aimed at strengthening IT security of the corporate information system be correctly addressed.

In this context, the NSR team is able to support the customer in the implementation of Governance, Risk and Compliance management solutions in the corporate sphere to allow the management, in a single environment, of process analysis, risk management, definition of the internal control system, activities related to compliance and audits. The different corporate functions involved in the Governance activities have the possibility of using a single solution to work collaboratively and centrally, sharing a unique and homogeneous vision of the corporate functioning, using a unique language that prevents ambiguities and misunderstandings and benefiting from consistent data and information management.

How NSR works:

• Analysis and Implementation analysis of legal obligations (GDPR, DPS, …), sector regulations and best practices.
• Analysis national and international regulatory compliance and standards, customer support for national and international certifications
• Analysis and Implementation of the Company Security Plan
• Security infrastructure Analysis (Policy, procedures, technologies, human resources, products, etc.)
• Analysis of system and network configuration, analysis of system and network management and maintenance procedures, support for management system certification (ISO 9001, ISO 27001, PCI DSS, …)

Products and Solutions:
RSA Archer (GRC – Governance Risk and Compliance), NSR WeCare (Risk Management)

Main references:
Alitalia, Banca Intesa San Paolo, Gruppo Unicredit, H3G, INPS, Ministero per l’Economia e le Finanze, Ministero per le Infrastrutture e I Trasporti, Ministero per lo Sviluppo Economico, Monte dei Paschi di Siena, Postecom, Poste Italiane, SNAM, Telecom Italia