Architecture and project management
Solution selection, specifications, management of design and build, integration with your existing system, acceptance testing and commissioning. Reversible architecture as a matter of principle.
HomeChoose and
Hosting and maintenance
Choose and
master your tools.
Reversible architecture, sovereign cloud, cybersecurity and NIS2 compliance, monitoring, backups, performance, cost elimination. Total independence from software vendors, from consulting to implementation.
What we offer
From consulting to concrete implementation
Cybersecurity and NIS2
Audits, penetration tests, risk analysis, security plans, real-time threat detection, defense organized in 7 layers, NIS2 compliance, governance brought to the executive committee.
Sovereign cloud
France or Europe. Reversible, dependency-free, GDPR-compliant by design. Sovereign hosts such as Scaleway, OVHcloud, Outscale, Cloud Temple or Numspot. Healthcare (HDS) and government (SecNumCloud) certifications.
Backups, recovery and continuity
The 3-2-1-1-0 rule, a fully isolated immutable copy, restoration tested every month, documented recovery and continuity plans.
Industrialization and monitoring
Automated, reproducible infrastructure, deployments without manual handling, real-time monitoring of the health of your services, operational and security maintenance.
Sovereign email
French solutions (BlueMind, Infomaniak, Whaller, Tchap, Olvid), phishing protection, electronic signature, legal archiving.
User support
French-speaking phone assistance, first and second level support, training, access management, change management, by technicians who know your file.
IT cost reduction
Audit of subscriptions and licenses, renegotiation, removal of duplicates, right-sizing of the cloud, sobriety. Average saving of 18 to 35%.
Cybersecurity
NIS2, ANSSI, defense in depth
NIS2, the penalties
Essential entities: up to 10 million euros or 2% of worldwide revenue. Important entities: up to 7 million euros or 1.4%. With personal liability for executives. Our engagements: classification of your sensitive assets, risk analysis, remediation plan, incident reporting at 24 hours, 72 hours and one month, governance brought to the executive committee.
ANSSI frameworks
The IT hygiene guide (42 rules), securing of identity directories, information systems security policy, SecNumCloud qualification, ANSSI-approved providers. We apply these frameworks as a foundation, not as an option.
Method
Three phases, from audit to continuous support
Audit and strategy
Map before acting.
Mapping of your information system, contract inventory, classification of your sensitive assets, risk analysis, identification of opportunities, quantified transformation plan.
Deployment management
Deploy without a tunnel.
Project management, progressive and reversible deployment, automated and reproducible infrastructure, change management, team training, assisted acceptance testing, rollback possible at every step.
Continuous support
Maintain, measure, improve.
Operational and security maintenance, user support, critical patches applied within 24 to 72 hours depending on severity, real-time monitoring, annual audit, continuous optimization.
Frequently asked questions
Any questions?
Where are the solutions you implement hosted?+
France or Europe, your choice. Sovereign hosts such as Scaleway or OVHcloud for standard needs, Outscale, Cloud Temple or Numspot for reinforced sovereignty, an HDS-certified host for healthcare, SecNumCloud qualification for sensitive government data. Criteria: data location, the host’s capital structure and governance, certifications, recovery time and maximum data loss guaranteed by contract, transparency of subcontractors.
Are you independent from software vendors and hosts?+
Yes, totally. No capital ties, no commercial agreement with any vendor or host. Our recommendations depend solely on your constraints, and our architectures remain reversible and maintainable by others than us.
How do you reduce our IT costs?+
Complete audit, identification of duplicates and underused tools, financial optimization of the cloud (paying only for the resources actually consumed, shutting down what sits idle), contract renegotiation, switching to competitive alternatives. Average saving of 18 to 35% on your IT budget.
What happens in the event of a security incident?+
24/7 support with a proven protocol: alert, isolation of what is affected, investigation, remediation, communication. A legal partnership (Hashtag Avocats) for notifications to the CNIL and crisis management. NIS2 reporting obligations (24 hours, 72 hours, one month) met if you are in scope.
Do you work on existing systems or only on new builds?+
Both, but existing systems account for the majority of our engagements. Audit, modernization, cloud migration, progressive step-by-step redesign: we build on what exists, replace it brick by brick, with a rollback possible at every step. No big bang.
Does the NIS2 directive apply to me, and what is at stake?+
Transposed by the French law of April 30, 2024, NIS2 covers around 15,000 entities (essential and important). Penalties: 10 million euros or 2% of worldwide revenue (essential), 7 million euros or 1.4% (important), with personal liability for executives. We carry out the analysis of your eligibility and then provide complete support.
What service levels (SLA) do you guarantee?+
99.9% as standard (around 8 hours of downtime per year), 99.99% as premium (around 52 minutes). In the event of a major incident, back to normal within 4 hours as standard and 1 hour for critical systems, with data loss limited to 1 hour as standard and 5 minutes for critical systems. Everything is contracted, measured and presented in a monthly report.
How do you protect our backups against ransomware?+
The 3-2-1-1-0 rule: 3 copies, 2 media, 1 off-site, 1 immutable copy fully isolated and offline, 0 errors thanks to monthly tests. This immutable copy stays out of reach of malicious encryption and lets you restart with peace of mind.
How do you detect and block cyberattacks?+
We deploy real-time threat detection across all your workstations and servers, favoring sovereign French and European cybersecurity vendors. Monitoring runs 24/7, by your team or by a cybersecurity center we operate for you.
Do you include digital sobriety (Green IT) objectives?+
Yes. Cloud cost optimization (FinOps) and digital sobriety (Green IT) converge: low-carbon hosts, resources sized to actual needs, shutting down what is not used, faster pages. Reducing consumption reduces the bill.
Do you support public procurement?+
Yes. Central purchasing bodies (UGAP), CCAG-TIC clauses, sovereignty requirements (SecNumCloud, hosting in France), contractual reversibility. We draft the technical sections compatible with your regulatory framework.
Going further
Once live, everything begins.
Going live is not an end, it is the beginning of the life of your website or application. Our maintenance and managed services offering keeps them fast, secure and up to date, over the long run.
Maintenance, managed services and application support
24/7 monitoring, security patches, 3-2-1-1-0 backups, contracted SLAs. Keeping your websites and applications in operational condition.
Free audit of your infrastructure
Take back control of your IT system.
Tell us about your infrastructure, your contracts and your pain points. We come back with a quantified diagnosis and three actionable recommendations.