Information security and data protection

Ensuring information security is an important task of your organization’s management. We help you analyze your risks, work with you to develop custom guidelines and standards and support you in the implementation process.

Information security (InfoSec) is grounded in technical, organizational and human resources measures. If you follow a holistic approach to your strategy, your organizational principles, your systems, applications and data, we are the people you should be talking to about information security.

Our services include:

  • Information security governance, InfoSec and data protection concepts
  • Risk analysis
  • Vulnerability analysis and response planning
  • Security mission statements
  • Security concepts
  • Security checks
  • Policy consulting

We take a critical look at methodology-related issues, elucidate matters of privacy law and data protection law and deal with questions about protecting critical information infrastructure. Alongside these tasks, we raise awareness and provide information and training. Our approach is founded on ISO/IEC 27001 (a standard for information security management systems or ISMS) and IT-Grundschutz, a standard established by the German Federal Office for Information Security (BSI).

You can count on support from our business units Safety + Security and Information Technology, which combine their methodological and technological knowledge and experience to make your organization and systems secure.