
CORA CyberSec.
Information Security Management System.
Information Security Management System.

CORA CyberSec is the CORA GRC module designed to enable companies to support adaptation and certification activities related to the world of Information Security (ISO/IEC 27001:2013).
Keep the process log / services, make the BIA and manage the SOA.
CORA CyberSec makes it easy to demonstrate accountability.
Your opinions


Some of our customers
The main
features.
CORA CyberSec is modular and configurable based on the characteristics of each individual organization.
- REGISTER OF PROCESSES AND SERVICES
Create and maintain the Register of processes and services, manage roles and responsibilities, identify assets and risks related to them.
- RISK MANAGEMENT
Identify threats to your organization and assets. Identify appropriate security measures to counter threats and analyze the residual risk.
- BIA (BUSINESS IMPACT ANALYSIS)
Easily perform a BIA (Business Impact Analysis) on each / service process and analyze the economic value related to your residual risk.
- SOA (STATEMENT OF APPLICABILITY - DECLARATION OF APPLICABILITY)
Manage and generate SOA, mandatory documented information required by ISO/IEC 27001:2013 which lists the security measures of ISO/IEC 27002:2013 with information about the applicability or not by the organization. Analyze in depth which threats are countered by the adoption of certain security measures.
- REPORTING
Generate list reports and details for each feature, useful both in the operational phase and in the certification phase with third-party bodies.
Not only
software.
Do you need a consultant to follow you in your activities?
Do you want to obtain ISO/IEC 27001:2013 certification with possible extensions to the guidelines (e.g.: ISO/IEC27017:2015, ISO/IEC27018:2019, ISO/IEC 27701:2019)?
Are you looking for specialized training courses?
REGULATORY
consultancy.
Our team is made up of highly specialized resources, with high experience in the field and constantly updated and trained to offer the best advice.
TRAINING
in classroom & online.
Our team is made up of highly specialized resources, with high experience in the field and constantly updated and trained to offer the best advice.
SUPPORT
in the certification phase.
We support and guide companies towards ISO/IEC 27001:2013 certification.