Consultoria - How it works?

Information security consultancy is the provision of service, by IT professionals, against cyber attacks, misconfiguration problems, data leakage and security breaches. These professionals are extremely qualified to guide and create security strategies to protect files, data and company information in the virtual environment.

STWBrasils objective is to carry out a detailed analysis of the complete IT environment based on information security, to identify opportunities for improvement and compliance adjustments.

Count on STWBrasils Security Consultancy professionals to support the planning of actions and acquisitions necessary to meet present and future perspectives.

Compliance Team Training

In addition to investing in process and contract validation, with a specialized legal staff, and meeting all requirements to guarantee data protection, it is essential that companies prepare employees and third parties for cyber threats. Through social engineering, a hacker manages to trick company employees into gaining access to systems, websites, restricted areas or even access to the physical premises of the corporation. Our consultants are prepared to train teams using resources such as simulations of real cases and implementing a complete security mindset in each member of the staff and third parties of the organizations.

Click here to know more

Incidents LGPD / ANPD

Despite all efforts to ensure the security of the information of companies and their customers, unfortunately there is the possibility of a security incident. Analysis, nothing on the internet is 100% safe. STWBrasil is prepared to assist companies in the fight against cyberattacks, in risk mitigation, in addition to investigating the traces left by hackers to try to discover the author of the attacks. The work of the team of specialists also analyzes the losses, what was in fact stolen from the company, and collects information following the correct methodology for obtaining forensic evidence for the initiation of a police investigation and possible legal dispute. Auditors and consultants report on the entire process and guide companies on how to communicate the incident to the National Data Protection Agency (ANPD), the press and customers. This procedure is done in compliance with the law and so that the impact of information leakage is minimized. The team has judicial experts in the computer forensics field, experienced in the procedural rite and in the analysis of incidents that have occurred or are in progress to obtain technical evidence.

Click here to know more

Implementation and Support

STWBrasil specialists have the necessary certifications and technical training to bring the company into compliance with the requirements of the LGPD. Adaptation to the new data protection law is not a simple measure, and that is why it is essential to invest in professionals who are able to make the organization up to date with the legislation and ready for the challenges of the technological future. Stages - Choice of leaders; - Data mapping; - Operational; - Training.

Click here to know more

Implementation of Csirt

The Computer Security Incident Response Team – Security Incident Response Group consists of the creation of an internal team/structure that receives, analyzes and responds to notifications and activities related to computer security issues. With the objective to maintain the information security of organizations in the computing environment, CSirt has several layers of security in the strategies for protecting systems and data. The increase in security incidents suffered by companies makes CSirt essential for these organizations to create awareness of the need for risk management practices.

Click here to know more