Capgemini Portugal Information Security Policy

Capgemini Portugal Information Security Policy

Capgemini Information Security objectives are aligned with the company’s strategy and business requirements covering all areas of Capgemini Portugal, namely administrative, commercial and technical (projects and services).

The Top management of Capgemini Portugal is committed to support the objectives and principles of this policy, and to ensure the necessary means for their implementation and maintenance. It designates the CISO (Chief information Security Officer) of Capgemini Portugal as the person responsible for the company’s Information Security, who is responsible under this policy for managing the ISMS – Information Security Management.

The Information Security Policy of Capgemini Portugal has the following general objectives:

  • Ensure the confidentiality, integrity, traceability and availability of information in the organization, which must be always protected and available for the business processes, projects and services that need it;
  • Protect the information managed by the organization against any undue, accidental or deliberate treatment of internal or external origin, preventing possible security incidents;
  • Reduce the vulnerability of the company’s assets to the level of security and the potential impact of identified risks, through appropriate risk assessment and management, and implementation of controls;
  • Ensure the processing and storage of the information in accordance with all legal regulations in force.

ISO/IEC 27001:2013

Information Security Management System