To meet new regulatory requirements, more and more companies, even small and medium-sized ones, now have to introduce an information security management system – ISMS for short. In addition to sectors that have been regulated for some time, such as banks and insurance companies, automotive suppliers and hospitals now also have to ensure greater security; and rightly so, since they are increasingly becoming targets of hacker attacks. The University Hospital in Düsseldorf was already hacked at the end of last year, which is why it had to deregister from emergency services in the meantime and could no longer be approached by ambulances. So here, what at first glance appears to be a harmless hacker attack put lives at risk in a very tangible way. The need for good security management is, therefore, more than obvious.
ISO 27001 is the cross-industry standard for information security. Building on this, the German Association of the Automotive Industry has created a more concrete version in the form of the TISAX catalog, which is binding for automotive suppliers. For hospitals, on the other hand, which are considered critical infrastructure, an industry-specific security standard has been defined based on statutory regulations (B3S). This includes, among other things, a reporting process for IT malfunctions and industry-specific security standards to prevent these malfunctions, particularly concerning the protection of patients.
In today’s interconnected world, information security is key, especially in the automotive industry. The introduction of an ISMS in accordance with TISAX is crucial for the security of critical information. In addition, being part of the TISAX exchange programme is a prerequisite for business relationships within the industry.
In the modern business world, it is imperative to ensure information security. By introducing an ISMS in accordance with ISO 27001, organizations ranging from micro-enterprises to large corporations can adequately protect their data and meet regulatory requirements where necessary.
In order to meet regulatory requirements, more and more companies, even small and medium-sized ones, have to introduce an information security management system – ISMS for short. Consileon is happy to support you!
Together we tackle your challenges. We will get back to you as soon as possible.
"*" indicates required fields
