Concerning IS security continuous improvement, a company should regularly make an assessment of its situation in order to answer the following questions:

• Are there new vulnerabilities or new uncovered threats that can impact my capital?
• What are my risks? Do I have to cover everything? What is important for my company, my organism?
• Are defined security rules correctly implemented?
• Are implemented security mechanisms robust enough?

SCASSI Conseil realizes technical and organizational audits according to well-known approaches in order to consider security needs in their entirety.