A TISAX® project is basically divided into three larger process steps:
Registration:
As soon as you receive the request to implement TISAX®, you have to register in the portal provided for this. This gives the VDA information that your company is dealing with the topic and that the project is being initiated.
Implementation:
As soon as you are registered for the TISAX® program, the implementation of the project in your company begins. Depending on the defined test objective, a large number of technical and organizational IT security measures must be implemented. The exact requirements for this result from the required assessment level and from the result of the pre-filled VDA-ISA questionnaire.
Examination and exchange:
As soon as all relevant measures have been implemented and documented, the previously selected audit service provider can audit the management system as an independent third party and, if the approval is successful, also award you the corresponding TISAX® label. You then exchange this with your business partners via the TISAX® platform and thus demonstrate the proper compliance with information and IT security in your company.