ISMS implementation in accordance with ISO 27001 based on IT-Grundschutz
The introduction of an information security management system (ISMS) based on IT-Grundschutz establishes measures that provide optimized protection for your company’s or public institution’s information in terms of trust, integrity and availability. The IT-Grundschutz methodology of the German Federal Office for Information Security (BSI) is used for this.
We support you in setting up an ISMS in accordance with ISO 27001 based on the BSI IT-Grundschutz.
Kick-off:
- Introduction meeting to define goals and expectations
- Definition of scopes
- Definition of the hedging methodology
Implementation of the ISMS according to ISO 27001 based on BSI IT-Grundschutz:
- Organisation of the security process
- Structural analysis
- Assessment of protection requirements
- Modelling
- IT-Grundschutz check
- Risk analysis
- Realisation of the security concept
- Maintaining the security concept