The Information Security of an organisation is as strong as its weakest link. As this
link usually is People themselves, it is crucial to provide them with knowledge that may
them to increase the protection and Information Security levels.
The increasing use of Information technologies enables greater efficiency and effectiveness
Nevertheless it naturally carries risk, one of which is Information Security.
The Information Security of an organisation is only as strong as its weakest link.
Because this weakest link is usually People themselves, it's crucial to endow them with
knowledge that allows them to increase the protection and security of Information.
Thus there is an evident importance of ensuring balance between these three elements of
Lisbon Security Academy is an Devoteam Cyber Trust initiative, which addresses People.
This initiative complements the traditional areas of Audit and Consulting
developed by Devoteam Cyber Trust.
The Lisbon Security Academy is specialized in Information Security and provides its own
training, as well as complete awareness-raising programs in this area.
Its innovative potential relies on the fact that its trainers are active Security
a daily basis.
The result is an offer of much more practical training based on experience and real world
Application Security is a training course designed to help development professionals with secure code practice know-how, working on
practical situations, common vulnerabilities, as well as on the best practices
to adopt in that specific context.
- Application Security
Information Security Awakening aims to raise awareness among both management professionals and other employees of topics related to Information Security.
- Information Security Awakening
- Information Security for Executives
Security Management offers a blend combination of best Management practices, based
on the most usual Standards and Frameworks, namely ISO 27001, among
- Introduction to Information Security and Risk Management
- Internal Audit
- ISO 27000 Information Security Management
- Advanced Concepts in Information Security
Our training offer (LISBON SECURITY ACADEMY) is delivered by Consultants that put Information
Security into practice on a daily basis and not by trainers who are exclusively dedicated to
Our consultant-trainer team possesses every relevant independent international certification
concerning Information Security Practice, namely MSc Information Security, CISSP, CISA, OSCP,
Offensive Security projects are customized according to the
needs and aims of our clients. They can be
technical component, processes, people or more
broadly combined context oriented. They can also
be oriented to deal with questions related to
compliance or regulation.
Devoteam Cyber Trust proposes to carry out penetration tests
that include the security of client's applications
installed on mobile devices and on the backend
services that support them. In this sense, Devoteam Cyber Trust
proposes a holistic analysis to the mobile
ISO/IEC 27001 is the best-known standard in the
requirements for establishing, implementing,
continually improving an information security
(ISMS) within the context of the organisation.
ISO 27701 provides specific requirements and guidance for continuously establishing,
implementing, maintaining, and improving a Privacy Information Management System (PIMS)
as an extension of the Information Security Management System (ISMS) defined in ISO 27001.
Preparation of a corporate governance model that
adopt and comply with all recommendations and
as policies, accountability frameworks,
monitoring and control
processes and mechanisms) is a pressing concern.
Through the use of Risk Management software,
often will uncover more systemic issues, and
to not only prioritize events by risk, but also
report on those
risks to foster continuous improvement.
IntegrityGRC works with upper levels of
management to ensure
strategies are in place to deal with compliance
they occur before the reputation and integrity
of the company
and its staff are jeopardized.
In order to support organisations, Devoteam Cyber Trust
360º Security Review, a holistic service to
provide current and
multidisciplinary status on the maturity, risks,
of the organisation in different vectors.
IntegrityGRC is a platform that helps
organisations to manage
their processes, risk and compliance in a
structured way. Our
platform creates a close link between the
its management and its operational practice,
control of the Organisation’s Information
Specially designed to meet all 27001
requirements and effectively
support your information security program. 27001
security effectively and helps obtaining
compliance as the result
of this seamless link. It contemplates features
that allow knowing
both the big picture and the details required by
the ISMS, at
Infosec Rating is a Solution that allows you to
manage your third-party risk.
Through this Solution it is possible to support
a continuous process of
improvement and risk reduction, also providing
Companies usually hire Pen-Testing once a year
to test their Security.
At KEEP-IT-SECURE-24 we test your Security in a
and provide you a cost-effective model in a
Managed Service approach.
Given the dynamics that applications and
infrastructures require these
days, testing your Security once a year is a
poor approach to your
company’s Security. Find out about the other
features that make our
It's a dynamic and continuous Consulting Service designed to meet the requirements of ISO 27001. It's supported by IntegrityGRC Platform to withstand and maintain the desired goal in the Information Security Management context.
The track of Secure Development is composed of
that aim to equip development professionals with
practices, addressing practical cases, common
as well as the best practices to adopt in this
Application development errors are the source of
number of Security vulnerabilities.