We systematically assess information security risks, considering the impact of threats and vulnerabilities.
/About Us
/Information Security
Information Security
SPEC is a company that contributes to the development of the electricity sector through consulting services and the development of innovative technological solutions that support decision-making in this sector.
For SPEC
The information of its clients and stakeholders is a key asset for its operation, and for this reason, there is a strong commitment to protecting its confidentiality, integrity, and availability, materialized through the implementation of an ISO/IEC 27001-compliant system.
ISO/IEC 27001:2013 is a security management standard that sets recommended practices for security management, as well as comprehensive security controls, in line with ISO/IEC 27002 best practices. The basis of this certification is the development and implementation of a strict security program, including a comprehensive Information Security Management System (ISMS) that defines how SPEC manages security on an ongoing and holistic basis.
International Security Standard
SPEC does the following:
We design and implement a complete set of information security controls and other risk management mechanisms to address security risks faced by clients and architecture.
We maintain a general management process to ensure that information security controls continually meet our needs.
