Information Security Management System (ISMS)

Together with you, we determine the scope for setting up a certifiable ISMS for your organisation and the operation of your process IT. External and internal framework conditions as well as the security level of your company play a central role.

We support you in the development, documentation, introduction and anchoring of an ISMS in the selected scope, taking into account the relevant standards (ISO/IEC 27002:2013 and ISO/IEC 27799:2016).

For the proof of a successful implementation, we accompany you in the preparation of the internal and external auditing of the ISMS. The goal is to successfully prove that information security in your company follows the usual industry standard.

We offer Zero Trust Envisioning Workshops to create an understanding. We take over the development of an individual Zero Trust strategy and implement this Zero Trust strategy and roadmap together with the client.

Whether in the cloud or specific Microsoft environment: we identify areas of action, derive measures, ensure compliance (DSGVO, works council) and support the creation of necessary documentation.

Secure identities are the first step into the cloud. Whether zero trust, single sign-on or governance processes - we design, implement and optimise solutions based on the latest Microsoft technologies such as Azure AD.

We design and implement threat protection strategies. The technological basis is formed by Microsoft 365 technologies such as Microsoft Defender for Endpoint, Defender for Office, Defender for Identity and Microsoft Defender for Cloud.

We plan and execute automated phishing campaigns, take care of sustainable change management to strengthen cyber security awareness and ensure the training and sensitisation of employees on the topic of data protection.