RapidAwareness, be compliant in 3 steps

Lincoln House, 300 High Holborn, London WC1V 7JH, United Kingdom • +44 (0)78-9501-3645

ABOUT US

Conscio Technologies develops comprehensive training and communication solutions in order to ensure awareness of your co-workers. Based on regulatory standards and internal policies, our solutions enable users to optimize the communication of projects. Our programs are designed to meet organization's need of any size in every activity sector. Conscio Technologies is:•Over 5 years of experience in security, awareness and training,•Over 500,000 satisfied users,•50 strong references of different sizes and from a variety of sectors.

http://www.rapidawareness.com/

http://www.conscio-technologies.com/index.php?lang=en

AA

FACT


THE MARKET

FinancialFinancial

Your organization continuously meets new challenges and is faced with new

regulations, which require compliance with a number

of security and confidentiality rules.

A large number of regulatory constraints

Public sectorPublic sector

HealthcareHealthcare

TelecomTelecom

EnergyEnergy

ServiceService

IndustryIndustry

Valid

for

any

market

sector




REGULATORY REQUIREMENTS

PAYMENT CARD IndustryPAYMENT CARD Industry

PCI DSS Training is now a mandatory requirements for any organization that stores, processes, or transmits payment

cardholder data.

PCI DSS REQUIREMENTS :

§12.6 - Make all employees aware of the importance of cardholder information security.

•Educate employees (for example, through posters, letters, memos, meetings and promotions).

•Require employees to acknowledge in writing that they have read and understood the company’s security policy and procedures.

Download the standard at: https://www.pcisecuritystandards.org/security_standards/documents.php

https://www.pcisecuritystandards.org/security_standards/documents.php





HEALTHCARE IndustryHEALTHCARE Industry

Awareness Training is required by the HIPAA (Health Insurance Portability and Accountability Act) for all members

who are likely to obtain access to protected health information (employees, volunteers, trainees, contractors, …)

HIPAA REQUIREMENTS : §164.308.(a).(5).(i) - Implement a security awareness and training program for allmembers of its workforce (including management).

Learn more at: http://www.hhs.gov/ocr/privacy/hipaa/administrative/securityrule/adminsafeguards.pdf

http://www.hhs.gov/ocr/privacy/hipaa/administrative/securityrule/adminsafeguards.pdf





FEDERAL GOVERNMENTFEDERAL GOVERNMENT

FISMA (Federal Information Security Management Act) is Title III of the E-Government ACT, which requires federal agencies to

develop, document and implement a comprehensive agency-wide information security program.

FISMA REQUIREMENTS :

§3544.(b).(4).(A),(B) - Securing awareness training to inform personnel, includingcontractors and other users of information systems that support the operations and assets of the agency, of information security risks associated with their activities; and their responsibilities in complying with agency policies and procedures designed to reduce these risks.

Learn more at: http://csrc.nist.gov/groups/SMA/fisma/index.html

http://csrc.nist.gov/groups/SMA/fisma/index.html





ANY SECTORANY SECTOR

ISO/IEC 27001 & 27002 REQUIREMENTS : §ISO 27002 8.2.2 - All employees of the organization and, where relevant, contractors and third party users should receive appropriate awareness training and regular updates in organizational policies and procedures, as relevant for their job function.





FINANCIAL ServicesFINANCIAL Services

IT Security Awareness Training is required for all employees of financial service providers covered by the GLB act, which includes agencies, tax preparers, finance companies, collections

agencies, leasing agencies, travel agencies and financial advisors.

GLBA REQUIREMENTS : §6801.(b).(1)-(3) - In furtherance of the policy in subsection (a) of this section, eachagency or authority described in section 6805(a) of this title shall establish appropriatestandards for the financial institutions subject to their jurisdiction relating to administrative, technical and physical safeguards.



ANY ORGANIZATION SHOULD IMPLEMENT A SECURITY AWARENESS

TO BE COMPLIANT

TO SUM UP …

YOURYOUR

NEED

AMONG CO-WORKERS TO MEET REGULATORY COMPLIANCE NEEDS

AMONG CO-WORKERS TO MEET REGULATORY COMPLIANCE NEEDS


BE COMPLIANT…

RAISE AWARENESS



…QUICKLY

…AND EASILY

OUROUR

SOLUTION


A TURNKEY OFFER





A TURNKEY OFFER





A TURNKEY OFFERPlease go ahead, Xavier.

What’s it about?

I loved the 24-minute film. It’s going to be difficult to wait 6 months for the rest to be relased!





A TURNKEY OFFER





A TURNKEY OFFER





THE BOX

*Information Systems Security


YOURYOURCAMPAIGN

11 SET UPSET UP


STEP 1: SET UP YOUR CAMPAIGN

Select your topic:

INFORMATION SECURITY PCI / DSS ETHICAL BUSINESS

HEALTHCARE PRIVACY SUSTAINABLE DEVELOPMENT

PRIVACY SECURITY

YOURYOUR

USERS22 REGISTERREGISTER


STEP 2: REGISTER YOUR USERS

UsersUsers

Campaign

Test

Topics

E-mail

Course

Portal

✓

✓

✓

✓

✓

Verify

Manually or by importing your csv file

YOURYOURCAMPAIGNLAUNCHLAUNCH

YOURYOURSTATISTICS

33 COLLECTCOLLECT


STEP 3: COLLECT YOUR STATISTICS


READY-TO-USE


WHY RAPIDAWARENESS ?

For 1,000 users With an other solution With Average estimated time

–Choose and order a

content

–Integrate the content

in your platform

–Customize, set up and

manage your campaign

TOTAL

½ day

1 day

3 days

5 days

Time

-Order your campaign

online

-Configure your campaign

-Register your users

-Check and launch your

campaign

TOTAL

5 mn

5 mn

10 mn

5 mn

25 mn

Average estimated cost

–External and internal workload (5 days/700$)

–Product price

TOTAL

$3,500

$8,000

$11,500

Price

–Internal workload (1day/700$)

–Price of the campaign

TOTAL

$700

$1,650

$2,350


THEY HAVE TRUSTED US

CONTACT


Education

RapidAwareness, be compliant in 3 steps