Cybersecurity

Your challenges  

 Cybersecurity is a priority for companies

• In France, 9 out of 10 companies have already affected by a cyber malicious act and 43% of them are SMEs.   
• It takes a company an average of 7 months to detect a data breach…75 days to resume a normal and secure activity after an attack.  
• 2/3 of CNIL sanctions since 2017 include a security breach.  
• The average cost of a cyber attack for a company is €1.3 million.  
• Only 17% of SMEs are protected against cyber attacks.  

The challenges and risks involved are numerous and can have irreversible consequences for organizations:  

• Financial risks: loss of turnover, cessation of activity, fines, technical or legal costs, increase in insurance premiums ….  
• Image: Deterioration of the brand image, loss of notoriety, loss of confidence from clients, partners and suppliers.  
• Human : Stress of the teams, trauma or burn-out, immense stress, technical unemployment, redundancy plans…  
• Immaterial: Loss of intellectual property, theft of R&D or clients, loss of a competitive advantage…  

Our offer   

With Novelis, you benefit from the support of specialized cybersecurity consultants who are able to detect vulnerabilities (whether they come from inside or outside), to propose a system mapping with prioritized recommendations according to the level of criticality. We also help your teams to increase their security skills and advise you on the best technologies and methodologies to protect your organization and its systems. 

The ” Cybersecurity ” offer is :   

Audit and Security Assessment: A first step to assess your vulnerabilities    

Novelis offers to perform intrusion tests and audit your systems to detect vulnerabilities and assess the impact of a cyber attack on your systems.    

• Application audit to detect application vulnerabilities and development and configuration errors   
• System and network analysis to identify infrastructure vulnerabilities   
• Organizational diagnosis to verify compliance with normative or regulatory standards
• Architecture audit in order to verify the conformity of security practices on the IS (hardware and software)   
• Intrusion tests to simulate malicious attacks   
• Code review to analyze the source code and development practices     

Optimization strategy and Cyber-resilience    

Creation of a system map and a justified risk hierarchy with recommendations and an action plan on the flaws to be corrected, prioritized according to their criticality.  

Governance and processes to ensure the security of the enterprise and its systems over the medium and long term   

Novelis assists you in setting up the organization and processes necessary to ensure the security of the company and its systems in the medium and long term. The organizational audit is performed in accordance with the ISO 27001 standard. It covers all the chapters of the standard such as: information security policies, information security organization, security related to human resources, access control, cryptography, physical and environmental security, security related to operations, communications security, acquisition, development and maintenance of information systems, management of incidents related to information security, aspects of information security in business continuity management, compliance. 

Training: Your employees can become your first line of defense against cyber attacks 

The human being is the weakest link in the security chain. Faced with phishing attacks, for example, it is extremely important to make users aware of the dangers of communicating sensitive data.   

Novelis offers its clients the design and implementation of targeted training and awareness campaigns to protect you from cyber attacks.