Governance, Risk & Compliance

The Governance, Risk and Compliance (GRC) area, through consultancy, auditing, training and coaching solutions and services:

– Provides support to organizations and professionals in complying with national and international legal, regulatory, contractual and normative requirements in the areas of privacy, information security, risk, cybersecurity, IT service management and business continuity;
– It monitors processes for obtaining certification in the areas of risk management, information security, cybersecurity, management of privacy and personal data protection services, business continuity, disaster recovery and IT service management;

You can count on work that is carried out with rigor, professionalism and seriousness.

Commitment
With our service...
We support compliance with requirements
We guarantee that our client complies with national and international requirements (DL65/2021, L93/2021, QNRCS, GDPR, LGPD, NIS, DORA, etc.)
We speed up the certification process
We accompany you through the certification process so that you can gain a competitive edge (ISO27001, ISO27701, ISO2000, ISO22301, etc.).
We evaluate practices that have already been implemented
We evaluate organizations with practices already in place, auditing their maturity in the market against cybersecurity frameworks or referential (ISO 27001, QNRCS, NIST, etc.).
Would you like more information?
Talk to our team and clarify all your doubts.
I want to get in touch
Services
Consulting
We provide advice on implementing best practices in organizations in all sectors, both to meet requirements and to obtain certifications.
Audits and evaluations
Through audits, we verify compliance with requirements and/or the maturity levels of the practices implemented in organizations, supporting our clients in digital transformation processes.
Training
We help our clients promote cybersecurity cultures by promoting training and awareness programs for their teams. The training is aimed at professionals who want to adopt good practices, with the possibility of obtaining certification.
Useful documents
Find all the details of our products, solutions and services in the documents available for download
Additional content

Holistic Approach

Area Manager
Clara Marques
Head of Governance, Risk & Compliance
Experienced professional in Cyberawareness and Training programs, Information Security, Process Optimization, PMO and Consulting Services.

Since 2023, she has been in charge of Governance, Risk and Compliance at Redshift.