Information Security

Your company’s sensitive information can be found within processes, systems and on data carriers. That’s why you need an ISMS to consistently protect your systems and data. Implement security measures and a continuous improvement process in your company. We would be happy to support you in setting up and implementing an ISMS in accordance with ISO 27001 or BSI IT-Grundschutz.

An ISMS protects your company against:

• Outside attacks
• Damage to your reputation
• Significant loss of data
• Monetary losses
• Liability risks and lawsuits
• Corrupted integrity of data and information

Before an external audit by an accredited body, an internal audit must be performed for an ISMS. Our experienced consultants will be happy to support you in this. We ourselves operate an ISMS in accordance with ISO 27001. Thanks to our extensive experience, we know what auditors value and can adequately prepare for the external certification audit.

Our internal audit ensures:

• Comprehensive gap detection
• Extensive documentation
• Elimination of existing gaps before external audit
• Optimal preparation for external audit

What happens when your most important IT system goes down? How long can this system be offline before your company suffers significant damage? We can help you set up an emergency management system in accordance with BSI Standard 100-4.

Do you know how to prepare for an emergency?

• Running through possible emergency scenarios
• Documentation of individual emergency plans
• Emergency exercises for employee awareness
• Definition of responsible persons and actions for emergencies
• Smooth emergency management

Feeling overwhelmed by the flurry of regulatory, legal and customer requirements for information security? An individual gap analysis helps you identify the current status of your company with regard to your security. We’d be happy to assist you in preparing it.

Close the gaps and create security:

• Variance analysis
• Concrete recommendations for actionables
• Security awareness
• Increase the security of your company
• Protection against loss of data and reputation

In the IT sector, risk management is extremely important. If you don’t think about security right from the start or monitor it continuously, your security risk is immense. Our security experts will work with you to ensure an environment without unnecessary risks. With the introduction of our tailor-made risk management, your company will benefit in the long term from a stable, secure and compliant IT, e.g. according to ISO 27005 and 31000.

Risks are calculable:

• Identification of information security risks
• Evaluation of potential impacts
• Definition of mitigation measures
• Design of a security risk management
• Integration into your existing risk management

Der Grad an Informationssicherheit im Unternehmen ist abhängig davon, wie diese gelebt wird.

Schutz kostet Zeit und erfordert Expertenwissen. Ressourcen für dieses Thema sind im Unternehmen häufig sehr begrenzt. Hier können wir Sie als externer Informationsbeauftragter unterstützen und Ihnen somit den Rücken freihalten.

Gemeinsam haben wir Ihre Sicherheit im Blick:

• Planung, Überprüfung und Verbesserung von Sicherheitsmaßnahmen
• Kompetenter Ansprechpartner bei Fragen und Sicherheitsvorfällen
• Entwicklung Ihres Notfallmanagements
• Unkomplizierte sowie effektive Beratung und Unterstützung auf Augenhöhe