Philippe Dann: Our service offer mainly covers activities relating to risk management, compliance with operational security and the IT transformation. There is often a gap between the level of requirements expressed by businesses and the current ability of the IT systems to meet those requirements. Our aim is to ensure that both of those parties are aligned so that in the event of a major incident, the company has access to a solution adapted to the business and that the IT system is able to deliver that one. To achieve this, we support our customers in developing a BIA (Business Impact Analysis) followed by a Business Continuity plan. The innovation contributed by EBRC consists in centralising all of that analysis work per business and per service within a central platform called the Cyber-Resilience Portal. Beyond the practical and security aspects of the centralisation of BIA storage and other components of a Business Continuity Management System, the Cyber-Resilience Portal makes it possible to create scenarios in real time to facilitate decision-making. Let us not forget that a Business Continuity approach is a long-term approach using the PDCA method (Plan Do Check Act). The Cyber-Resilience Portal makes it easier to implement this recurring process that contributes to improve organisations’ resilience by providing managers with the resources to select from among the best options. Our solution provides them with access to various alternatives, enabling them to take a decision after understanding the potential ROI of each improvement considered.
Christophe Ruppert: Thanks to our support, our customers will be able to adopt good business continuity practices and implement a continuous improvement process based on the ISO 22301 standard. ISO 22301 specifies the requirements for planning, establishing, installing and implementing, auditing, revising, maintaining and continuously improving a documented Management system in order to create a layer of protection against disruptive incidents, reduce the probability of their occurrence, prepare for such incidents, and recover when they occur.