Auditors check the security of information produced in the company. They investigate infrastructures and issue certificates on the basis of basic IT protection and statutory regulations. SerNet's BSI-certified auditors can issue official auditor attestations and certifications according to ISO 27001 on the basis of basic IT protection.
With its open source software verinice, which has been available since the end of 2007, SerNet offers a tool that links the BSI catalogues with the user's individual IT landscape and also supports the workflow to improve IT security.
With external SerNet data protection officers our customer fulfil their statutory requirements - or SerNet can also train internal data protection officers and continue to provide them with support.
Ansprechpartner: Alexander Koderman
Emailkontakt: CundA@SerNet.DE
Telefon:+49 551 370000-0
Compliance
Compliance in terms of information security means ensuring that technical information security meets legal and other regulatory guidelines. This is an ongoing task for every person who is responsible for security.
The most important standards and regulations are the international standards ISO 27001 to 27001, the rules relating to basic IT protection in BSI standards 100-1 to 100-4. In Germany, legal regulations include TKG, BDSG, GDPdU and KonTraG.
These are complemented by specific regulations such as IDW PS 330 for auditors, MA-Risk for risk management in banks and CobiT as a framework for IT governance.
SerNet helps its customers fulfil all their compliance guidelines.
