Information Security Management System

Convince customers and minimise risks
Attacks from cyberspace are not only becoming more frequent, but also increasingly sophisticated. It’s high time that you take preventive measures to protect yourself from digital threats. On the one hand, the implementation of an information security management system (ISMS) greatly limits potential risks, and on the other, enhances your customer relations and the security of your company, and enables you to efficiently meet your compliance targets.

Information security is more than just IT security
To strengthen information security in your company, it isn’t sufficient to focus exclusively on the company’s IT, because confidential information is not just processed electronically, but also on analogue data carriers such as paper. An ISMS ensures that all confidential information is protected, regardless of the data carrier. As neutral consultants, we’ll support you in selecting the right set of rules for you, whether sector-independent or sector-specific, from ISO 27001 to TISAXⓇ.

Implementing an ISMS in accordance with ISO/IEC 27001 based on IT basic protection
The key to information security lies in a holistic and systematic information security management system (ISMS). The German Federal Office for Information Security (BSI) provides an established methodology for this: the security process according to the BSI IT Basic Protection methodology (BSI-IT Grundschutz-Methodik). This method enables appropriate and effective measures to be established for sustainably safeguarding the protection objectives of information security.

Implementation phases

We suggest a modular approach for implementing an ISMS, based on the BSI methodology:

Fig.: Security process as per the BSI IT Basic Protection methodology

YOUR CONTACT

Fabian Roth
Managing Director
Senior Security Consultant

Are you interested in our offer?
Contact us – directly by mail or phone.
We look forward to getting to know you and your company.

Tel. +49 (0)221 999837-25