Information Security Management

Questions? Just ask!

I am Paul Pietsch from the HCD sales team. I will be happy to advise you or assist you with any questions. You can phone me on +49 89 215 36 92-0 or reach me using our contact form. 

Are you KRITIS (yet)?

The BSI (the German Federal Office for Information Security) uses the term KRITIS to define critical infrastructure in Germany. Businesses in the associated sectors must organise their own ISO/IEC 27001 certified Information Security Management System.

Regular updates to IT security legislation mean that increasing numbers of companies in Germany are classified as KRITIS by the BSI. So it makes sense for German IT departments to start getting to grips with certified data security today.

Robust information security measures don’t just serve your company, but also your customers, your suppliers and your staff.

We’ll set up your ISMS

Your Information Security Management System should deliver the right protection for all your assets, without getting in the way of your company’s everyday business. So, together with you, we’ll analyse your corporate assets, conduct a GAP analysis, and come up with customised protection for them.

We’ll check your ISMS

If you already have an Information Security Management System, we’d be happy to help you check it over and optimise it before your next audit. We see ourselves as your information security partner. So we won’t just help you in emergencies, but we’ll help you prepare for your upcoming audits, too.

We’ll create the documentation together with you

Documentation is the core of your ISMS. It describes which measures provide what kind of protection and how. So that your auditor understands what you mean, we’ll help you put together coherent and comprehensive documentation for the auditors. With all our experience in accompanying audits, we know exactly what is important. So we won’t waste any time and we can get straight to the point.

We support your audits

Your ISMS depends on regular audits. With us by your side, you have nothing to worry about – we know what auditors want to hear and we understand all the jargon. We won’t just support you in the run-up to the audit, but also during internal and external audits. This means we can answer questions quickly and expertly – and ensure completing your certification is made as easy as possible for you.

We’ll apply the PDCA cycle for your ISMS

Your Information Security Management System should be improving continuously. This keeps it relevant for your company and helps prevent attacks and system failures at all times. We’ll apply Deming’s Plan-Do-Check-Act cycle to your ISMS. In this way, we can assure you have optimum protection and that you’ll sail through any pending audits.