Alle Unternehmen ab 50 Mitarbeiter, aus den betreffenden Branchen,
sowie einem Umsatz ab 10 Mio. Euro müssen konform werden.
Sanktionen für wesentliche Einrichtungen: bis zu 10 Mio. Euro, oder zwei Prozent des Umsatzes
Sanktionen für wichtige Einrichtungen: bis zu 7 Mio. Euro, oder 1,4 Prozent des Umsatzes.
What is TISAX® ?
An assessment according to TISAX® is an "Information Security Assessment" (ISA) developed by the German Association of the Automotive Industry (VDA).
The TISAX® is the abbreviation of "Trusted Information Security Assessment Exchange" and a registered trademark of the ENX Association. The aim of the test is to establish a uniform safety standard in the German automotive industry. The entire value chain of the automotive industry should manage information securely.
For this purpose, the ENX Association provides a platform on which all participants of a TISAX® examination can register. The test results are exchanged on this platform. The test standard VDA / ISA is not a completely new invention, but is based on ISO 27001, which has been the standard for information security since the early 2000s.
Your way to success!
Free initial consultation
01
gap analysis
02
TISAX® consulting project time
03
Dress rehearsal effectiveness
04
TISAX®
ASSESSMENT
05
TISAX vs. ISO 27001
The differences between TISAX and ISO 27001 aren't great, but as is so often the case, the devil is in the details. It is the subtle differences that distinguish the two standards.
-
TISAXwas developed specifically for the automotive industry and is a standard for information security in the automotive industry. ISO 27001 is industry independent.
-
TISAXhas an extra module for data protection. ISO 27001 only deals with information security. Data protection is defined in the ISO 27701 standard.
-
TISAXalways deals with a company location as the scope. With ISO 27001, on the other hand, you can define your own limits, such as departments.
-
TISAXhas a maturity model and evaluates the implementation, which is why we speak of TISAX also from an assessment. There is no maturity model for ISO 27001, which is why this is called an audit.
We see information security as an important asset and do not want to put our customers at risk at any time.
Attacks on the supply chain are part of everyday life. For this reason, we do not tell the general public what information can be found on our servers.
We keep all customer data encrypted and strictly confidential at all times!
our customers
National and international
Taking care of our customers is important to us. Our advice is tailored to you. We carry out pragmatic and goal-oriented projects with qualified specialists.
-
certified auditor for ISO/IEC 27001 (TÜV/DEKRA)
-
Information Security Officer (TUV)
-
ITILv3 Foundation
-
Experts and appraisers in IT security (DEKRA)
-
Certified data protection officer (TÜV / DEKRA)
-
Certified Information Security Officer (TÜV / DEKRA)
-
Tests are based on DIN ISO 19011
-
Trained project managers (IHK)
-
Trained and approved auditors (TÜV /DEKRA)
We help you, yourTISAX® assessment successfully.
Our claim:
100% success
-
All TISAX® consultants are sufficiently qualified and have several years of professional experience in the subject area.
-
Our TISAX advice is tailored to your company. No templates that don't suit you!
-
When selecting solutions, we always act pragmatically and cost-effectively.
-
We take your processes and framework conditions into account.
OUR SUCCESS GUARANTEE:
We offer TISAX at a fixed price.
You only pay the final bill once you have passed!
Should there be an unexpected re-examination, you don't have to pay a cent extra!