Cybersecurity and privacy are transversal concerns in ICT systems which are increasingly difficult to address. The development and operation today of such systems involves complex supply chains with many stakeholders. While expertise in the early days was about well-defined system components, nowadays it must also include holistic views as well as multidisciplinary viewpoints. Trialog has a 15-year involvement in such activities for cybersecurity and privacy.
Trialog cybersecurity and privacy business unit has been set up to help organisations. We provide training, consulting, risk analysis and engineering services.
The increasing deployment of connected ICT systems is raising concerns about security breaches which can cause vast damage, especially when considering critical infrastructures such as energy grid or transport. There is a need to rethink the design, deployment and operation of such systems, in particular in the area of risk analysis as well as test, validation and assurance strategies.
The whole IT technology chain is producing a trail of information about citizens: the IoT, the connected vehicle, the cloud and big data. To address these concerns, the general data protection regulation was adopted in 2016 by the EU. It mandates privacy by design and by default, meaning data protection must be designed into the development of business processes for products and services. The GDPR also requires data protection impact assessments, a process for risk assessment and mitigation. The GDPR came into force on May 2018. There is a need to integrate privacy into the design of ICT systems.
Security / privacy training
Security / privacy audits
Security risk analysis / privacy impact assessment (PIA)
Security / privacy engineering services