WIRTSCHAFTSSCHUTZ.EU, Business Security, Dipl.-Ing. Günter Holzhauser
WIRTSCHAFTSSCHUTZ.EU, Business Security, Dipl.-Ing. Günter Holzhauser
WIRTSCHAFTSSCHUTZ.EU, Business Security, Dipl.-Ing. Günter Holzhauser
WIRTSCHAFTSSCHUTZ.EU, Business Security, Dipl.-Ing. Günter Holzhauser
WIRTSCHAFTSSCHUTZ.EU, Business Security, Dipl.-Ing. Günter Holzhauser

TISAX® requirement

TISAX® is an information security standard defined by the automotive industry for relevant suppliers and service providers who are required by an OEM to verify they meet a defined level of information security. TISAX® is heavily based on ISO 27001 and ISO 27002 with respect to information security.

The TISAX® standard is a broad and comprehensive framework for information security. The requirements are more complex and stricter than those of ISO 27001, which is still relatively general and more open, because the high requirements for implementation of TISAX® are formulated and laid down in very specific terms.

For the affected companies that have not yet implemented information security based on comparable standards (ISO 27001, BSI IT-Grundschutz, etc.), TISAX® is a difficult and complex challenge that can hardly be implemented without external support. In-depth and comprehensive knowledge of almost all areas of corporate security and information security is needed to set up an ISMS in compliance with TISAX® and reach certification readiness.

The areas of IT security, network management, risk management, identity and authorization management, continuity management, and cybersecurity incident management are particularly challenging for companies that do not have any processes or experience in these areas. TISAX® is a challenge even for companies with a background in IT security or information security.