{"id":509,"date":"2011-07-18T09:46:34","date_gmt":"2011-07-18T08:46:34","guid":{"rendered":"http:\/\/www.solucominsight.fr\/?p=509"},"modified":"2019-12-31T12:26:38","modified_gmt":"2019-12-31T11:26:38","slug":"maintenir-le-smsi-conserver-une-dynamique-de-construction","status":"publish","type":"post","link":"https:\/\/www.riskinsight-wavestone.com\/en\/2011\/07\/maintenir-le-smsi-conserver-une-dynamique-de-construction\/","title":{"rendered":"Maintenir le SMSI : conserver une dynamique de construction"},"content":{"rendered":"<p>La mise en place d\u2019un Syst\u00e8me de Management de la S\u00e9curit\u00e9 de l\u2019Information (SMSI) au sein d\u2019une organisation donne l\u2019impulsion d\u2019une nouvelle d\u00e9marche s\u00e9curit\u00e9. Une fois le <a title=\"Rendre la norme ISO 27001 op\u00e9rationnelle : trouver le SMSI gagnant\" href=\"http:\/\/www.solucominsight.fr\/2011\/06\/rendre-la-norme-iso-27001-operationnelle-trouver-le-smsi-gagnant\/\">SMSI gagnant identifi\u00e9<\/a> et <a title=\"Rendre la norme ISO 27001 op\u00e9rationnelle : construire efficacement son SMSI\" href=\"http:\/\/www.solucominsight.fr\/2011\/06\/rendre-la-norme-iso-27001-operationnelle-construire-efficacement-son-smsi\/\">la construction de celui-ci achev\u00e9e<\/a> (certifi\u00e9 ou non\u00a0!) se profile d\u00e9j\u00e0 un nouveau d\u00e9fi pour le RSSI\u00a0: comment entretenir la d\u00e9marche pour continuer \u00e0 en tirer au maximum parti\u00a0?<\/p>\n<p>En effet si le premier cycle Plan-Do-Check-Act est souvent de la d\u00e9couverte, la deuxi\u00e8me ann\u00e9e peut se r\u00e9v\u00e9ler pav\u00e9 d\u2019\u00e9cueils si elle n\u2019est pas soigneusement pr\u00e9par\u00e9e. La d\u00e9rive la plus fr\u00e9quemment rencontr\u00e9e est bien s\u00fbr la d\u00e9mobilisation des collaborateurs : pass\u00e9e la phase projet et l\u2019aboutissement de l\u2019impl\u00e9mentation des processus ou de la certification, il ne faut pas \u00ab\u00a0laisser le souffl\u00e9 retomber\u00a0\u00bb, m\u00eame si des projets d\u2019autres entit\u00e9s occupent d\u00e9sormais le devant de la sc\u00e8ne\u00a0aupr\u00e8s du management !<\/p>\n<h2><strong>Conserver la dynamique projet<\/strong><\/h2>\n<p>Il est important de maintenir une dynamique ambitieuse pour traiter les risques par les projets de s\u00e9curit\u00e9. Ces chantiers permettront de garder un focus sur la s\u00e9curit\u00e9 et feront vivre le SMSI indirectement. En effet, ils sont propices \u00e0 la mise en place de rendez-vous r\u00e9guliers (comit\u00e9s de pilotage, points projets\u2026) avec les collaborateurs et la direction sur le sujet s\u00e9curit\u00e9. Le SMSI est alors utilis\u00e9 au quotidien et l\u2019avancement des projets permet de montrer des r\u00e9ductions des risques concr\u00e8tes, et mesur\u00e9 dans le temps. Les premiers effets concrets du SMSI\u00a0!<\/p>\n<h2><strong>Optimiser et garantir l\u2019adh\u00e9sion au SMSI dans le temps<\/strong><\/h2>\n<p>La construction initiale est bien souvent r\u00e9alis\u00e9e sur des bases nouvelles, en imaginant le fonctionnement des processus de mani\u00e8re optimale. Fort de l\u2019exp\u00e9rience des premiers cycles, le responsable du SMSI doit \u00eatre \u00e0 l\u2019\u00e9coute des collaborateurs sur le fonctionnement de ces processus, de mani\u00e8re, de mani\u00e8re directe (rencontre, questionnaire\u2026) ou indirecte, pour d\u00e9terminer o\u00f9 se trouvent les points d\u2019am\u00e9lioration les plus criants et apporter des modifications rapides. Cela permet d\u2019\u00e9viter un effet de lassitude, voire m\u00eame de rejet, pour des processus qui fonctionneraient moyennement.<\/p>\n<p>Ces \u00e9volutions sont g\u00e9n\u00e9ralement de deux types. Il s\u2019agit tout d\u2019abord de l\u2019industrialisation des t\u00e2ches r\u00e9currentes par l\u2019outillage\u00a0: m\u00eame s\u2019il n\u2019existe pas aujourd\u2019hui de solution id\u00e9ale, des optimisations sur des t\u00e2ches particuli\u00e8res sont possibles (qu\u2019elles soient techniques, de pilotage comme les indicateurs ou administratives comme la documentation). Puis vient la rationalisation des actions existantes, particuli\u00e8rement en renfor\u00e7ant l\u2019int\u00e9gration du SMSI dans les processus de l\u2019entreprise. Par exemple l\u2019int\u00e9gration de revues de direction de plusieurs syst\u00e8mes de management ou encore l\u2019unification des d\u00e9marches d\u2019audit et de contr\u00f4le interne sont de beaux d\u00e9fis qui n\u00e9cessitent une maturit\u00e9 importante mais qui sont autant de vecteurs d\u2019optimisation.<\/p>\n<p>M\u00eame si ces chantiers sont peu visibles, ils vont \u00eatre la cl\u00e9 pour d\u00e9montrer que l\u2019adaptabilit\u00e9, la r\u00e9activit\u00e9 et l\u00e9g\u00e8ret\u00e9 du SMSI.<\/p>\n<h2><strong>Faire de l\u2019audit de surveillance un marqueur cl\u00e9<\/strong><\/h2>\n<p>Le suivi des incidents, des crises mais aussi des non-conformit\u00e9s et des actions correctives et pr\u00e9ventives sont essentielles pour montrer l\u2019apport du SMSI. Cette analyse ne doit pas \u00eatre un travail isol\u00e9 men\u00e9 par le responsable du SMSI mais bien une d\u00e9marche collaborative avec les \u00e9quipes op\u00e9rationnelles. Cette revue r\u00e9guli\u00e8re et partag\u00e9e permet de montrer l\u2019apport du SMSI dans la couverture des \u00e9v\u00e8nements li\u00e9s \u00e0 la s\u00e9curit\u00e9.<\/p>\n<p>Bien s\u00fbr, cette dynamique ne saurait \u00eatre compl\u00e8te sans une communication r\u00e9guli\u00e8re aupr\u00e8s de l\u2019ensemble des populations\u00a0: qu\u2019il s\u2019agisse de sensibilisation ou de communication sur les gains de la d\u00e9marche et les succ\u00e8s (impact aupr\u00e8s des clients, gains op\u00e9rationnels, etc.), les piq\u00fbres de rappel sont n\u00e9cessaires pour ancrer dans les pratiques et les esprits la d\u00e9marche s\u00e9curit\u00e9 et les enjeux de l\u2019organisme. L\u2019audit de surveillance, voire de renouvellement, est un marqueur cl\u00e9 de cette strat\u00e9gie de communication. Il doit \u00eatre v\u00e9cu comme un aboutissement chaque ann\u00e9e. Et ceci pas uniquement car la certification est maintenue, mais bien parce que le niveau de protection est meilleur d\u2019ann\u00e9e en ann\u00e9e\u00a0!<\/p>\n<h2><strong>Se remettre en question pour aller plus loin<\/strong><\/h2>\n<p>Finalement, le responsable du SMSI doit avoir un esprit d\u2019\u00e9coute et de conqu\u00eate pour d\u2019une part comprendre les \u00e9v\u00e8nements qui marquent son p\u00e9rim\u00e8tre m\u00e9tier (nouvelles offres, fusions, rapprochement, \u00e9volution du march\u00e9\u2026) et d\u2019autre part identifier les actions cl\u00e9s pour une potentielle \u00e9volution du SMSI. Des pistes judicieuses pour faire souffler un vent de fra\u00eecheur sur le SMSI et donner une nouvelle impulsion \u00e0 la d\u00e9marche !<\/p>\n","protected":false},"excerpt":{"rendered":"<p>La mise en place d\u2019un Syst\u00e8me de Management de la S\u00e9curit\u00e9 de l\u2019Information (SMSI) au sein d\u2019une organisation donne l\u2019impulsion d\u2019une nouvelle d\u00e9marche s\u00e9curit\u00e9. Une fois le SMSI gagnant identifi\u00e9 et la construction de celui-ci achev\u00e9e (certifi\u00e9 ou non\u00a0!) se&#8230;<\/p>\n","protected":false},"author":15,"featured_media":6343,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"page-templates\/tmpl-one.php","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[3222,36],"tags":[62,3304,63],"coauthors":[837,782],"class_list":["post-509","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cyberrisk-management-strategy","category-cybersecurity-digital-trust","tag-iso-27001","tag-risk-management-strategy-governance","tag-smsi"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.0 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Maintenir le SMSI : conserver une dynamique de construction - RiskInsight<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.riskinsight-wavestone.com\/2011\/07\/maintenir-le-smsi-conserver-une-dynamique-de-construction\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Maintenir le SMSI : conserver une dynamique de construction - RiskInsight\" \/>\n<meta property=\"og:description\" content=\"La mise en place d\u2019un Syst\u00e8me de Management de la S\u00e9curit\u00e9 de l\u2019Information (SMSI) au sein d\u2019une organisation donne l\u2019impulsion d\u2019une nouvelle d\u00e9marche s\u00e9curit\u00e9. Une fois le SMSI gagnant identifi\u00e9 et la construction de celui-ci achev\u00e9e (certifi\u00e9 ou non\u00a0!) se...\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.riskinsight-wavestone.com\/2011\/07\/maintenir-le-smsi-conserver-une-dynamique-de-construction\/\" \/>\n<meta property=\"og:site_name\" content=\"RiskInsight\" \/>\n<meta property=\"article:published_time\" content=\"2011-07-18T08:46:34+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2019-12-31T11:26:38+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.riskinsight-wavestone.com\/wp-content\/uploads\/2012\/10\/Cybercriminalite.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"573\" \/>\n\t<meta property=\"og:image:height\" content=\"214\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"G\u00e9r\u00f4me Billois, Marion Couturier\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"G\u00e9r\u00f4me Billois, Marion Couturier\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/2011\/07\/maintenir-le-smsi-conserver-une-dynamique-de-construction\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/2011\/07\/maintenir-le-smsi-conserver-une-dynamique-de-construction\/\"},\"author\":{\"name\":\"G\u00e9r\u00f4me Billois\",\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/en\/#\/schema\/person\/8c7dc7008d92d9f59fb0c108c988cb17\"},\"headline\":\"Maintenir le SMSI : conserver une dynamique de construction\",\"datePublished\":\"2011-07-18T08:46:34+00:00\",\"dateModified\":\"2019-12-31T11:26:38+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/2011\/07\/maintenir-le-smsi-conserver-une-dynamique-de-construction\/\"},\"wordCount\":854,\"publisher\":{\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/en\/#organization\"},\"image\":{\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/2011\/07\/maintenir-le-smsi-conserver-une-dynamique-de-construction\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.riskinsight-wavestone.com\/wp-content\/uploads\/2012\/10\/Cybercriminalite.jpg\",\"keywords\":[\"ISO 27001\",\"Risk management\",\"SMSI\"],\"articleSection\":[\"Cyberrisk Management &amp; Strategy\",\"Cybersecurity &amp; Digital Trust\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/2011\/07\/maintenir-le-smsi-conserver-une-dynamique-de-construction\/\",\"url\":\"https:\/\/www.riskinsight-wavestone.com\/2011\/07\/maintenir-le-smsi-conserver-une-dynamique-de-construction\/\",\"name\":\"Maintenir le SMSI : conserver une dynamique de construction - RiskInsight\",\"isPartOf\":{\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/en\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/2011\/07\/maintenir-le-smsi-conserver-une-dynamique-de-construction\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/2011\/07\/maintenir-le-smsi-conserver-une-dynamique-de-construction\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.riskinsight-wavestone.com\/wp-content\/uploads\/2012\/10\/Cybercriminalite.jpg\",\"datePublished\":\"2011-07-18T08:46:34+00:00\",\"dateModified\":\"2019-12-31T11:26:38+00:00\",\"breadcrumb\":{\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/2011\/07\/maintenir-le-smsi-conserver-une-dynamique-de-construction\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.riskinsight-wavestone.com\/2011\/07\/maintenir-le-smsi-conserver-une-dynamique-de-construction\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/2011\/07\/maintenir-le-smsi-conserver-une-dynamique-de-construction\/#primaryimage\",\"url\":\"https:\/\/www.riskinsight-wavestone.com\/wp-content\/uploads\/2012\/10\/Cybercriminalite.jpg\",\"contentUrl\":\"https:\/\/www.riskinsight-wavestone.com\/wp-content\/uploads\/2012\/10\/Cybercriminalite.jpg\",\"width\":573,\"height\":214},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/2011\/07\/maintenir-le-smsi-conserver-une-dynamique-de-construction\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Accueil\",\"item\":\"https:\/\/www.riskinsight-wavestone.com\/en\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Maintenir le SMSI : conserver une dynamique de construction\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/en\/#website\",\"url\":\"https:\/\/www.riskinsight-wavestone.com\/en\/\",\"name\":\"RiskInsight\",\"description\":\"The cybersecurity &amp; digital trust blog by Wavestone&#039;s consultants\",\"publisher\":{\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/en\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.riskinsight-wavestone.com\/en\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/en\/#organization\",\"name\":\"Wavestone\",\"url\":\"https:\/\/www.riskinsight-wavestone.com\/en\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/en\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.riskinsight-wavestone.com\/wp-content\/uploads\/2021\/08\/Monogramme\u2013W\u2013NEGA-RGB-50x50-1.png\",\"contentUrl\":\"https:\/\/www.riskinsight-wavestone.com\/wp-content\/uploads\/2021\/08\/Monogramme\u2013W\u2013NEGA-RGB-50x50-1.png\",\"width\":50,\"height\":50,\"caption\":\"Wavestone\"},\"image\":{\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/en\/#\/schema\/logo\/image\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/en\/#\/schema\/person\/8c7dc7008d92d9f59fb0c108c988cb17\",\"name\":\"G\u00e9r\u00f4me Billois\",\"description\":\"G\u00e9r\u00f4me Billois is a Partner at Wavestone in the Cybersecurity and Digital Trust practice. He graduated from the National Institute of Applied Sciences in Lyon. He has deep expertise in risk management and cybersecurity, developed over more than 15 years of experience. G\u00e9r\u00f4me is a board member of CLUSIF, a member of the ISO JTC1\/SC27 committee, responsible for information security standardisation, and a founding member of Club27001, a non-profit dedicated to promoting the ISO 27001 standard. He holds CISA, CISSP and ISO 27001 PA certifications. G\u00e9r\u00f4me co-authored several books on cybersecurity (Eyrolles, Cepadues, Wiley &amp; Sons, Larcier), is a regular media and conference speaker (Assises de la S\u00e9curit\u00e9, ISACA, CLUSIF, CNIS, etc.), and gives university lectures.\",\"url\":\"https:\/\/www.riskinsight-wavestone.com\/en\/author\/gerome-billois\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Maintenir le SMSI : conserver une dynamique de construction - RiskInsight","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.riskinsight-wavestone.com\/2011\/07\/maintenir-le-smsi-conserver-une-dynamique-de-construction\/","og_locale":"en_US","og_type":"article","og_title":"Maintenir le SMSI : conserver une dynamique de construction - RiskInsight","og_description":"La mise en place d\u2019un Syst\u00e8me de Management de la S\u00e9curit\u00e9 de l\u2019Information (SMSI) au sein d\u2019une organisation donne l\u2019impulsion d\u2019une nouvelle d\u00e9marche s\u00e9curit\u00e9. Une fois le SMSI gagnant identifi\u00e9 et la construction de celui-ci achev\u00e9e (certifi\u00e9 ou non\u00a0!) se...","og_url":"https:\/\/www.riskinsight-wavestone.com\/2011\/07\/maintenir-le-smsi-conserver-une-dynamique-de-construction\/","og_site_name":"RiskInsight","article_published_time":"2011-07-18T08:46:34+00:00","article_modified_time":"2019-12-31T11:26:38+00:00","og_image":[{"width":573,"height":214,"url":"https:\/\/www.riskinsight-wavestone.com\/wp-content\/uploads\/2012\/10\/Cybercriminalite.jpg","type":"image\/jpeg"}],"author":"G\u00e9r\u00f4me Billois, Marion Couturier","twitter_misc":{"Written by":"G\u00e9r\u00f4me Billois, Marion Couturier","Est. reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.riskinsight-wavestone.com\/2011\/07\/maintenir-le-smsi-conserver-une-dynamique-de-construction\/#article","isPartOf":{"@id":"https:\/\/www.riskinsight-wavestone.com\/2011\/07\/maintenir-le-smsi-conserver-une-dynamique-de-construction\/"},"author":{"name":"G\u00e9r\u00f4me Billois","@id":"https:\/\/www.riskinsight-wavestone.com\/en\/#\/schema\/person\/8c7dc7008d92d9f59fb0c108c988cb17"},"headline":"Maintenir le SMSI : conserver une dynamique de construction","datePublished":"2011-07-18T08:46:34+00:00","dateModified":"2019-12-31T11:26:38+00:00","mainEntityOfPage":{"@id":"https:\/\/www.riskinsight-wavestone.com\/2011\/07\/maintenir-le-smsi-conserver-une-dynamique-de-construction\/"},"wordCount":854,"publisher":{"@id":"https:\/\/www.riskinsight-wavestone.com\/en\/#organization"},"image":{"@id":"https:\/\/www.riskinsight-wavestone.com\/2011\/07\/maintenir-le-smsi-conserver-une-dynamique-de-construction\/#primaryimage"},"thumbnailUrl":"https:\/\/www.riskinsight-wavestone.com\/wp-content\/uploads\/2012\/10\/Cybercriminalite.jpg","keywords":["ISO 27001","Risk management","SMSI"],"articleSection":["Cyberrisk Management &amp; Strategy","Cybersecurity &amp; Digital Trust"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.riskinsight-wavestone.com\/2011\/07\/maintenir-le-smsi-conserver-une-dynamique-de-construction\/","url":"https:\/\/www.riskinsight-wavestone.com\/2011\/07\/maintenir-le-smsi-conserver-une-dynamique-de-construction\/","name":"Maintenir le SMSI : conserver une dynamique de construction - RiskInsight","isPartOf":{"@id":"https:\/\/www.riskinsight-wavestone.com\/en\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.riskinsight-wavestone.com\/2011\/07\/maintenir-le-smsi-conserver-une-dynamique-de-construction\/#primaryimage"},"image":{"@id":"https:\/\/www.riskinsight-wavestone.com\/2011\/07\/maintenir-le-smsi-conserver-une-dynamique-de-construction\/#primaryimage"},"thumbnailUrl":"https:\/\/www.riskinsight-wavestone.com\/wp-content\/uploads\/2012\/10\/Cybercriminalite.jpg","datePublished":"2011-07-18T08:46:34+00:00","dateModified":"2019-12-31T11:26:38+00:00","breadcrumb":{"@id":"https:\/\/www.riskinsight-wavestone.com\/2011\/07\/maintenir-le-smsi-conserver-une-dynamique-de-construction\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.riskinsight-wavestone.com\/2011\/07\/maintenir-le-smsi-conserver-une-dynamique-de-construction\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.riskinsight-wavestone.com\/2011\/07\/maintenir-le-smsi-conserver-une-dynamique-de-construction\/#primaryimage","url":"https:\/\/www.riskinsight-wavestone.com\/wp-content\/uploads\/2012\/10\/Cybercriminalite.jpg","contentUrl":"https:\/\/www.riskinsight-wavestone.com\/wp-content\/uploads\/2012\/10\/Cybercriminalite.jpg","width":573,"height":214},{"@type":"BreadcrumbList","@id":"https:\/\/www.riskinsight-wavestone.com\/2011\/07\/maintenir-le-smsi-conserver-une-dynamique-de-construction\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Accueil","item":"https:\/\/www.riskinsight-wavestone.com\/en\/"},{"@type":"ListItem","position":2,"name":"Maintenir le SMSI : conserver une dynamique de construction"}]},{"@type":"WebSite","@id":"https:\/\/www.riskinsight-wavestone.com\/en\/#website","url":"https:\/\/www.riskinsight-wavestone.com\/en\/","name":"RiskInsight","description":"The cybersecurity &amp; digital trust blog by Wavestone&#039;s consultants","publisher":{"@id":"https:\/\/www.riskinsight-wavestone.com\/en\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.riskinsight-wavestone.com\/en\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.riskinsight-wavestone.com\/en\/#organization","name":"Wavestone","url":"https:\/\/www.riskinsight-wavestone.com\/en\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.riskinsight-wavestone.com\/en\/#\/schema\/logo\/image\/","url":"https:\/\/www.riskinsight-wavestone.com\/wp-content\/uploads\/2021\/08\/Monogramme\u2013W\u2013NEGA-RGB-50x50-1.png","contentUrl":"https:\/\/www.riskinsight-wavestone.com\/wp-content\/uploads\/2021\/08\/Monogramme\u2013W\u2013NEGA-RGB-50x50-1.png","width":50,"height":50,"caption":"Wavestone"},"image":{"@id":"https:\/\/www.riskinsight-wavestone.com\/en\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/www.riskinsight-wavestone.com\/en\/#\/schema\/person\/8c7dc7008d92d9f59fb0c108c988cb17","name":"G\u00e9r\u00f4me Billois","description":"G\u00e9r\u00f4me Billois is a Partner at Wavestone in the Cybersecurity and Digital Trust practice. He graduated from the National Institute of Applied Sciences in Lyon. He has deep expertise in risk management and cybersecurity, developed over more than 15 years of experience. G\u00e9r\u00f4me is a board member of CLUSIF, a member of the ISO JTC1\/SC27 committee, responsible for information security standardisation, and a founding member of Club27001, a non-profit dedicated to promoting the ISO 27001 standard. He holds CISA, CISSP and ISO 27001 PA certifications. G\u00e9r\u00f4me co-authored several books on cybersecurity (Eyrolles, Cepadues, Wiley &amp; Sons, Larcier), is a regular media and conference speaker (Assises de la S\u00e9curit\u00e9, ISACA, CLUSIF, CNIS, etc.), and gives university lectures.","url":"https:\/\/www.riskinsight-wavestone.com\/en\/author\/gerome-billois\/"}]}},"_links":{"self":[{"href":"https:\/\/www.riskinsight-wavestone.com\/en\/wp-json\/wp\/v2\/posts\/509","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.riskinsight-wavestone.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.riskinsight-wavestone.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.riskinsight-wavestone.com\/en\/wp-json\/wp\/v2\/users\/15"}],"replies":[{"embeddable":true,"href":"https:\/\/www.riskinsight-wavestone.com\/en\/wp-json\/wp\/v2\/comments?post=509"}],"version-history":[{"count":9,"href":"https:\/\/www.riskinsight-wavestone.com\/en\/wp-json\/wp\/v2\/posts\/509\/revisions"}],"predecessor-version":[{"id":6521,"href":"https:\/\/www.riskinsight-wavestone.com\/en\/wp-json\/wp\/v2\/posts\/509\/revisions\/6521"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.riskinsight-wavestone.com\/en\/wp-json\/wp\/v2\/media\/6343"}],"wp:attachment":[{"href":"https:\/\/www.riskinsight-wavestone.com\/en\/wp-json\/wp\/v2\/media?parent=509"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.riskinsight-wavestone.com\/en\/wp-json\/wp\/v2\/categories?post=509"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.riskinsight-wavestone.com\/en\/wp-json\/wp\/v2\/tags?post=509"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/www.riskinsight-wavestone.com\/en\/wp-json\/wp\/v2\/coauthors?post=509"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}