- Establish and operate systems for managing information security under ISO 27001.
- Asses the function of information security for an adequate operational risk management.
- Train and implement tests for specific security issues: handling of confidential information, risk identification, best practices for telecommuting, among others.