Today, solid information security brings far more benefits to organizations than merely securing their technical infrastructure. Entire business processes now depend significantly on it – whether it’s the secure handling of sensitive data or the legally compliant processing of them.
ISO 27001:2013 ISMS Certification
Mubea Group is the global market leader in the development and manufacture of complex automotive components that reduce vehicle weight and contribute to improved environmental protection through reduced CO2 emissions. Mubea succeeded in standardizing information security within the global organization through DQS certification according to ISO 27001:2013.
Globalization presents many organizations with enormous challenges when it comes to information security. Mubea was faced with the major hurdle of wanting to raise the level of IT security to the same level in ten countries with a total of 20 subsidiaries.
“We came across DQS relatively quickly during our research and realized in an initial meeting that we were a very good match.” Christiane Habbel, Head of IT ‐ Information Security & Compliance at Mubea.
TISAX® – ISMS for Automotive Industry
TISAX (Trusted Information Security Assessment Exchange), a standard for information security defined by the automotive industry, provides another scheme for 3rd-party audits and reports sharing with customers selected by the audited organizations. With the development and adoption of AI functions to vehicles, more and more automotive manufacturers and suppliers now require TISAX audits from business partners and sub-suppliers.
Mubea decided to go for TISAX audit by DQS, in addition to the ISMS certification against ISO 27001. For these certification and audit, Mubea had to demonstrate successful interaction of the basic values of information security: Confidentiality, Integrity and Availability. Potential IT risks or other processes endangering information security were listed and optimized in this context.
“The cooperation with DQS was very practical and customer‐oriented. We benefited greatly from the in‐depth industry knowledge of the auditors, who supported us in all aspects,” said Habbel. “This is true for both ISO 27001 and TISAX certification.”
Value from Audits and Certifications
With the audit and certification service by DQS, Mubea has not only succeeded in optimizing the security of sensitive data and information at its headquarters. The organization has also raised 20 subsidiaries to a new level of security and established a common security standard.
This gives the automotive supplier a competitive advantage in the market, Habbel stated: “With ISO 27001, we have not only brought a high security standard into the organization throughout Europe. We also protect ourselves against cyber attacks from outside and have been able to sensitize our employees to the security of our confidential company values. Because information security is much more than just IT security. Now, however, we are not standing still. Key components of our management system are audited annually in order to achieve further improvements. The already very good level of our information security is thus continuously evolving.”
Referenced source: website of DQS Holding GmbH and DQS GmbH.
Technical Support by DQS 技術支援:
- DQS is one of the few certification bodies providing accredited ISO 27001 certification and TISAX Audit service.
DQS 是少數幾家同時提供認可的 ISO 27001 認證和 TISAX 審核服務的認證機構之一。