Tag Archive for: IT security

Informationssicherheit in der Finanzwirtschaft: Cloud-Dienstleister mit ISO/IEC 27001-Zertifikat sind die sichere Wahl Teil 3

Information security in the financial industry: Cloud service providers with ISO/IEC 27001 certification are the safe choice Part 3

Companies in the financial sector must comply with numerous regulations to protect data and IT systems. In addition to the GDPR, the requirements from BAIT, VAIT and KAIT are particularly relevant here.

Read more

Informationssicherheit in der Finanzwirtschaft: Cloud-Dienstleister mit ISO/IEC 27001-Zertifikat sind die sichere Wahl Teil 2

Information security in the financial industry: Cloud service providers with ISO/IEC 27001 certification are the safe choice Part 2

Selecting a cloud service provider: ISO 27001 certificate as a central criterion

Certification in accordance with the ISO/IEC 27001 standard forms a central criterion for the selection of a cloud service provider. Companies from the financial sector that transfer their data externally must trust their cloud provider and rely on the provider’s compliance with all technical, legal and contractual requirements. Certification by an external body proves that IT security and information security are practiced in a company and that this is verified by annual re-audits by external auditors.

Read more

Eine Expedition, die gute Vorbereitung braucht TISAX®-Zertifizierung Success Story - CURVES MAGAZIN

VIDEO: An expedition that needs good preparation: TISAX® certification Success Story – CURVES MAGAZINE

An expedition that needs good preparation: TISAX® certification also for sole proprietorships! We show you how photographer Stefan Bogner was the first sole proprietor in Germany to achieve TISAX® certification.
Read more

Die neue ISO/IEC 27002:2022 – neue Struktur für Informationssicherheit

The new ISO/IEC 27002:2022 – new structure for information security

The international standard ISO/IEC 27002 defines general measures for higher information security. In this way, it helps to implement the measures from Annex A of ISO/IEC 27001. A few weeks ago, the new version ISO/IEC 27002:2022 was published. What is new and what do the changes mean for companies?

Read more

Von der GAP-Analyse zum Audit: ISO 27001 Success Story - Fact Informationssysteme und Consulting AG

VIDEO: From GAP analysis to audit: ISO 27001 Success Story – Fact Informationssysteme und Consulting AG

From GAP analysis to audit: All inclusive to ISO 27001 certification! We show you how Fact Informationssysteme und Consulting AG completely reorganized its IT security and data protection within one year.
Read more

BSI issues red alert for Log4J vulnerability

The BSI has declared a red alert level for the Log4j vulnerability on Saturday, Dec. 11, 2021. Numerous applications are threatened by the vulnerability.

According to media reports, the affected applications include iCloud and Minecraft, as well as a system from Tesla. Various federal agencies are also threatened by the vulnerability.

Read more

BayLDA führt anlasslose Kontrollen zur Sensibilisierung vor Ransomware-Angriffen durch

BayLDA conducts random checks to raise awareness against ransomware attacks

The BayLDA has announced that it will conduct audits at companies to make them aware of ransomware attacks and query the protective measures implemented by the companies against such attacks. In the last six months alone, companies reported several hundred such attacks to the BayLDA. The victims of these attacks are small to large companies from a wide range of industries.
Read more

BSI und BKA warnen vor Cyber-Attacken über Weihnachten

BSI and BKA warn of cyber attacks over Christmas

The German Federal Office for Information Security (BSI) and the German Federal Criminal Police Office (BKA) warn in a press release published on 02.12.2021 of increased attack risks (e.g. cyber attacks) on companies over the Christmas holidays this year.
Read more

Videobeitrag - TISAX - Prototypenschutz - IT-Sicherheit - Informationssicherheit - Informationssicherheitsbeauftrater - IT-Sicherheitsbeauftragter - IT-Security - Information Security Officer - ISB - ITS - Autohäuser

VIDEO: TISAX® prototype protection – what are prototypes and what should be considered?

In addition to information security and data protection, there is a third area in which the VDA-ISA defines requirements. In the video, we deal with this third area with the topic: “TISAX® prototype protection”.

Read more

NIS2 - Security of Network and Information Systems 2

NIS2 – Security of Network and Information Systems 2.0 for more cybersecurity in the EU

At the end of 2020, the EU Commission presented a draft for the Security of Network and Information Systems (NIS) 2.0 directive. This is intended to replace the NIS Directive, which became the first EU-wide cybersecurity law to come into force in August 2016. The new draft makes further demands on companies with regard to cybersecurity.

Read more