TISAX® (Trusted Information Security Assessment Exchange) is the standard for information security in the automotive industry and the automotive industry’s response to the ever-growing security needs of service providers and suppliers for confidential and sensitive information. Especially in networks and customer relationships between OEMs, service providers and suppliers who exchange sensitive data, it is a challenge to establish a high level of security.
In 2017, the VDA created a new industry standard based on the ISO/IEC 27001 standard, “TISAX®”, which is intended to provide comprehensive information security for all stages in a supply chain and at the same time simplify the recognition process for external suppliers. Since 2018, the TISAX process of the ENX Association (Association of European Automobile Manufacturers, Suppliers and Associations) has played an important role. TISAX is already a standard in many places and will in future be THE standard in all companies in the automotive industry (manufacturers, suppliers, suppliers, etc.).
ISO 27001 is the leading international standard for information security management systems (ISMS) and provides organizations of all types and sizes with clear guidelines for planning, implementing, monitoring and improving their information security. The requirements apply to private or public companies and non-profit institutions and are generally applicable.
CRITIS (Critical Infrastructures) are important basic services for our society. If your company belongs to a critical infrastructure sector (KRITIS) and exceeds a certain threshold value, then according to the BSI Critical Infrastructure Ordinance you must provide proof of appropriate information security measures every two years.
The Federal Ministry of the Interior divides critical infrastructures into nine sectors with corresponding industries: Energy supply, information technology and telecommunications, transport and traffic, health, water, nutrition, finance and insurance, government and administration as well as media and culture.
Our consulting services TISAX®, ISO/IEC 27001, CRITIS:
- Analysis and subsequent recommendation for action for the desired certification
- Support in leading the way to certification
- Implementation of internal audits
- Implementation and further development of the ISMS