The technical progress is changing our business world rapidly. In addition to many opportunities, this also offers information security risks caused by technical or human errors such as hacker attacks, data breaches and much more. Organizations need to fix these vulnerabilities to avoid high fines, costs to fix or a reputational damage. Guidelines such as ISO 27001, BSI IT-Grundschutz, VdS 10000, VDA ISA / TISAX or B3S make a significant contribution to the security of company-wide information. An information security management system (ISMS) comprises standardized procedures, guidelines and specified measures to minimize risks and protect company values. Regardless of you have your company certified, the requirements of the standard must be complied. This is the ...