The Management of WISDOM CONSULTING aims to achieve a leading position in the sector of:

Provision and management of work teams in the telecommunications sector, in areas such as Administration, Finance, Procurement, Technical Support, Sales Support, Digital Sales Support, Network Operation and Maintenance, In-Home Services, and Workplace Maintenance Services.

For this reason, and being aware of the importance and necessity for companies today to have an integrated management system aligned with the ISO 9001 and ISO 27001 standards in their current version, WISDOM CONSULTING is committed to proper management and control of the processes and activities it undertakes.

Regardless of other factors, and as an exceptional tool for achieving this leadership, maintaining the Integrated System is essential to optimize the management of material and human resources and ensure the effectiveness of our service.

WISDOM CONSULTING always strives for continuous improvement of the System to offer our clients a service with the highest guarantees of reliability.

The Integrated Management System must meet the needs and expectations of clients, in addition to addressing our own needs and interests.

The need to provide our clients with highly reliable service has led WISDOM CONSULTING to establish as a priority and unwavering goal the delivery of services with the highest guarantees of reliability.

The Integrated Management System implemented at WISDOM CONSULTING must meet the requirements established by the ISO 9001 and ISO 27001 standards, as well as applicable legal and regulatory requirements, as outlined in the Quality and Security Manual and documented procedures.

The Quality and Security Manual and applicable procedures are mandatory for all WISDOM CONSULTING personnel; therefore, all staff are obligated to understand and comply with them.

There is a commitment to maintaining a security system for data, personnel, and infrastructure, ensuring they cannot be misused, subject to unwanted intrusions, theft, or improper use of information, among other risks. To this end, the company will provide the necessary technical, security, IT, and human resources.

Additionally, the organization defines the concepts, principles, responsibilities, and objectives regarding Information Security, ensuring the company maintains the freedom of action required.

Principles:

  • Integration: Global Security is an integrated process aligned with the business, involving the entire company.
  • Profitability: Security is guided by business criteria, considering the balance between cost and investment. Centralized criteria are established, leveraging any existing synergies. This approach reduces overall costs and enhances the effectiveness of security efforts.
  • Continuity: Security must be present throughout its lifecycle: protection, prevention, detection, response, and recovery.
  • Adaptation: The resources used must be adapted to the business environment. Factors impacting the business and security levels include competition with other companies, social, political, and economic disruptions, amateur or professional hacking, and more.

The company's security committee will also analyze risks and vulnerabilities that may impact the business's proper functioning and propose appropriate standards, resources, and measures to minimize them, safeguarding the confidentiality, availability, and integrity of the information.

All personnel in the organization must assume responsibility for maintaining the security of the assets under their control, adhering to the security standards implemented by WISDOM CONSULTING.

Objectives:

  • Achieve and maintain the required security level to ensure the business's continuity, even in adverse situations.
  • Increase integration and mutual support between the physical and logical aspects of security.
  • Collaborate in managing other security disciplines, including labor and environmental aspects, aligning with criteria that enhance Corporate Social Responsibility.
  • Establish the corporate security structure defined by the organization's decision-making bodies and create appropriate communication channels among all stakeholders.
  • Comply with official security regulations and other requirements.
  • Develop and implement Security Training and Awareness Plans to improve staff training.
  • Integrate the various company departments into a security management system that, under common criteria, leverages synergies and achieves consistency in resources and actions.

All organization personnel will be aware of and apply the regulations outlined in this Security Policy.

The General Director provides adequate and sufficient resources for implementing this System and complies with this Quality and Security Policy.

The Integrated Management System is reviewed by the General Director as often as necessary, but at least once a year, to maintain its effectiveness. These reviews generate and store records.

The General Director and employees are convinced that this path serves to enhance both the Culture of Quality and Security as well as training and risk prevention for the company.

This policy has been developed as a reference framework for establishing the company’s objectives and is available to the public.

Signed,
Management

Angel Sotillos
Date: 10/18/2023