Setting up an Information Security Management System (ISMS) at SIEMENS AG
Using Information Management Security Systems (ISMS) is now a core element of corporate strategies for cybersecurity and other security issues. That is why more and more Siemens AG business units are now opting for the international ISO/IEC 27001 standard. The company’s Corporate Governance department commissioned TÜV TRUST IT to launch an ISO/IEC 27001-based ISMS as an essential foundation for information security within the Siemens Group.
SIEMENS AG is a leading global company that is positioned along the electrification value chain – from conversion, distribution and utilisation of energy to medical imaging and in-vitro diagnostics. Active worldwide, the company has a payroll of over 370,000 employees and earned sales revenues of around € 83 billion in financial year 2017.
To implement its security strategies Siemens uses the services of external experts as required. The Group’s Corporate Governance department did precisely that when assistance was required to improve the process maturity of the ISO 27001:2013-based ISMS in preparation for certification. In June 2017 Siemens decided in favour of TÜV TRUST IT as its external partner.