German companies and agencies that look after ‘critical infrastructure’ could be subject to tighter cyber security requirements.
German Interior Minister Thomas de Maiziere submitted draft legislation earlier this week that would apply to many companies, including those involved in information technology, telecommunications, energy, traffic, transport and health.
The draft legislation requires any company in these critical sectors to report hacker attacks and to always be reachable to ensure they can be warned as quickly as possible when cyber attacks occur.
Even though de Maiziere has denied that this new law will mean huge administrative costs to companies, German organisations can only assume the worst.
The best, and easiest, way to mitigate the risk of cyber attack is to implement a robust information security management system (ISMS) to manage your data effectively. Information security is a broad approach that addresses the security of information in all forms and covers paper documents, physical security and human error, as well as the handling of digital data.
ISO27001 is the internationally recognised best-practice standard that lays out the requirements of an ISMS and forms the backbone of every intelligent cyber security risk management strategy.
IT Governance has created ISO27001 packaged solutions to give European organisations online access to world-class expertise. Each fixed-priced solution is a combination of products and services that will enable you to implement ISO27001 at a speed and budget appropriate to your individual needs.