DGSSI Compliance Evaluator

Assess your DGSSI/DNSSI compliance level by answering 12 questions. Identify gaps and get a personalized action plan.

1.Has your organization appointed a Chief Information Security Officer (CISO)?

Yes, dedicatedYes, combined with another roleNo

2.Is there a formalized Information Security Policy (ISP) approved by management?

Yes, updated < 2 yearsYes, but outdatedNo

3.Does an IS security committee meet regularly?

Quarterly or moreAnnuallyNo

4.Do you have an up-to-date inventory of your IT assets (servers, workstations, applications)?

Yes, automatedYes, manualNo

5.Are sensitive data classified according to their criticality level?

Yes, policy enforcedPartiallyNo

6.Is encryption applied to sensitive data (at rest and in transit)?

Yes, systematicallyPartiallyNo

7.Are accesses to critical systems logged and monitored?

Yes, with SIEM/SOCBasic loggingNo

8.Are penetration tests performed periodically?

Annually or moreAd hocNever

9.Is a security incident management plan documented and tested?

Yes, testedYes, untestedNo

10.Is a Business Continuity Plan (BCP) in place?

Yes, testedYes, untestedNo

11.Are your personal data processing activities declared to the CNDP?

Yes, allPartiallyNo or don't know

12.Have you performed a DGSSI/DNSSI compliance audit?

Within the last 12 monthsMore than a year agoNever

Your trusted technology partner in Morocco. ERP, development, infrastructure, security, and compliance.

Hay Riad, Rabat, Maroc