Our positioning
Cybersecurity is no longer a perimeter game. With cloud, remote work and distributed architectures, every service is an attack surface. Our approach: audit in depth (ITGC), prioritise by risk, harden progressively, and maintain over time.
Our engagements
ITGC audit
IT general controls audit per COBIT 5: access management, change management, operations management, continuity management. Output: risk mapping, costed recommendations and 90/180/365-day action plan.
Penetration tests
- External pentest: Internet exposure, web applications and APIs
- Internal pentest: privilege escalation from a compromised endpoint
- Application pentest: OWASP Top 10 on business applications
Each report includes: proof of exploit, CVSS criticality, remediation recommendation, post-remediation validation.
Business continuity
BCP / DRP design: business impact analysis (BIA), per-process RTO / RPO definition, fallback architecture design, documented switchover tests.
ISO 27001 compliance
Full compliance programme: gap analysis, ISMS design, policy documentation, team training, mock audit and certification audit support.
Our team
Our consultants are CISA certified (Certified Information Systems Auditor — ISACA) and trained on NIST CSF, COBIT and ISO 27001 frameworks. For sensitive engagements, reinforced NDA and confidentiality clauses.
Who is it for
Banks, financial institutions, telecom operators, international organisations, ministries and operators of vital importance in the CEMAC zone.