TISAX
TISAX stands for Trusted Information Security Assessment Exchange, a platform operated by the ENX Association to register organizations with the need securely exchange data.
TISAX labels are based on information security, prototype and date privacy controls, specific needs, and process maturity related to and Information Security Assessment (ISA) workbook, provided by the VDA.
The VDA Information Security Assessment (ISA) workbook is based organizational and technical controls found in ISO/IEC 27001 2022: Information Security Management Systems Annex A requirements and ISO/IEC 27002: Code of Practice for Information Security Controls. An information security management system is the basis for TISAX assessments.
Developed by the (VDA) German Association of the Automotive Industry's Information Security Working Group, which described the fundamental requirements for information security in the VDA Information Security Assessment catalogue, used for information security assessments within the industry supply chain.
For the design, manufacturing, and distribution of vehicles, the Original Equipment Manufacturer (OEM) works with its preferred organizations throughout the value chain.
OEMs frequently share proprietary material with the supplier base to enhance collaboration, such as a prototype design. Data and asset exchanges along the supply chain may result in losses, manipulations, or even theft of product and trade secrets, if valuable data is not well protected. As a result, OEMs will want to ensure that their suppliers and partners, including marketing and sales departments, have a sound information security management system before contracting them.
A registered company can easily share it’s given TISAX information security label with others by using the ENX exchange, which means:
- Ensured time and cost savings by eliminating duplicate assessments based on the needs of the customer.
- Enhanced customer loyalty by meeting stringent requirements.
- Reduced liability by protecting critical information.
Omnex provides TISAX awareness training for leadership, IS/IT managers, process owners and ISMS implementors. As well as providing information security assessment support, ISO/IEC 27001 2022 ISMS audit services and lead auditor certification.
- Understanding the Requirements of ISO/IEC 27001:2022 and VDA ISA TISAX
- ISO/IEC 27001:2022 and VDA ISA TISAX Internal Auditor Training for Information Security Management Systems
- ISO/IEC 27001:2022 and VDA ISA TISAX Lead Auditor Training for Information Security Management Systems
- Understanding the Requirements of ISO/IEC 27001:2022 for Information Security Management Systems
- ISO/IEC 27001:2022 Internal Auditor Training for Information Security Management Systems
- ISO/IEC 27001:2022 Lead Auditor Training for Information Security Management Systems
Aligning your Information Security Management System framework with TISAX Controls
Speakers:
Martin Hettwer, Kumar Sivan
Watch WebinarTISAX – An Automotive Industry Cybersecurity Requirement
Speakers:
Martin Hettwer, Laura Flanagan
Watch WebinarTrusted Information Security Assessment Exchange (TISAX) - An Automotive Industry Cybersecurity Requirement
Speakers:
Martin Hettwer, Laura Flanagan
Watch WebinarInformation Security Management: An Industry Priority (ISO 27001)
Speakers:
Jeff Spira, Laura Flanagan
Watch WebinarImplementing an Information Security Management System (ISMS) based on TISAX
By
Martin Hettwer
click here