Implementation of Information Security
in accordance with TISAX®/VDA-ISA


TISAX® (Trusted Information Security Assessment Exchange) is a standard for information security defined by the German Association of the Automotive Industry. The test catalog on which an assessment is based is now available in version 5.
TISAX® is based on the information security standards in accordance with ISO 27001, but has been adapted to the requirements of the automotive industry in key aspects and has precisely defined requirements.

The certificate is available in three levels:

TISAX® Assessment Level 1 (normal): usually a self-disclosure according to a test catalog.
TISAX® Assessment Level 2 (high): a plausibility check and a telephone interview by an auditing company; an on-site audit may be required in certain circumstances.
TISAX® Assessment Level 3 (very high): an on-site check by experts from a testing company is mandatory.

TISAX® is a registered trademark of the ENX Association. This institution accredits the testing companies that carry out an assessment and provides an online platform on which certified companies can publish their acquired labels.

An implemented ISMS according to TISAX®/VDA-ISA brings your company the following advantages:

  • Information security adapted to the needs of the automotive industry
  • Protection of your business processes
  • Awareness training for your employees
  • Capture of critical processes and resources
  • Risk management of your company assets, thus ensure awareness and minimization of risks
  • Processes, documents and strategies adapted to your company
  • Validation of processes through tests and exercises
  • Easy release of your labels to your clients on the ENX platform

Our experts can support you in set up and operate your ISMS according to TISAX®/VDA-ISA.
We offer complete outsourcing, implementation of specific measures or entire ISMS projects.

Our offers:

  • Implementation TISAX®/VDA-ISA

    You are planning to implement a TISAX®/VDA-ISA with the corresponding documents and processes.

    We can support you in the efficient implementation.
  • Awareness Training

    You need to respond to information security events and incidents quickly and correctly!

    We prepare your employees!
  • Audit Preparation TISAX®/VDA-ISA

    You have implemented TISAX®/VDA-ISA and want to be sure that it is lived in your company?

    We analyze your processes and make suggestions for improvement.

Frequently Asked Questions

  • TISAX®/VDA-ISA certification is a supplementary requirement by the German Association of the Automotive Industry (VDA) based on ISO 27001.
  • VDA-ISA is the industry standard for information security assessments, the Information Security Assessment (ISA) catalog of the German Association of the Automotive Industry.
  • It depends. If your key customers are from the automotive industry, TISAX®/VDA-ISA is sufficient. If your customers are from other industries, ISO 27001 certification makes perfect sense.