Success Story: Stadtwerke Bielefeld masters risks with SECIRA
How Stadtwerke Bielefeld was able to centralize and secure its risks across all locations - with SECIRA as the key to success.
How the DRK Aalen relies on ISO 27001 and BSI basic protection right from the planning phase - with a clear strategy for future risk management.
Successful introduction of information security: The DRK-Kreisverband Aalen e.V. secures its new control center sustainably
The DRK-Kreisverband Aalen e. V. is planning to build a new control center and was faced with a fundamental question: Does the control center have to be secured like a critical infrastructure (KRITIS)? Even though the German Red Cross as a rescue service has not yet been officially classified as a critical infrastructure, the DRK-Kreisverband Aalen e. V. decided at an early stage to act proactively and comprehensively secure its future control center.
As a reliable partner, we helped to clarify the uncertainties and provide professional support throughout the entire process right from the start. We prepared a targeted as-is analysis for the introduction of an information security management system (ISMS) in accordance with ISO / IEC 27001. This early measure serves to identify risks in good time and counteract future threats as early as the planning phase.
A central component of our approach is the determination of protection requirements and the IT baseline protection analysis in accordance with the specifications of the German Federal Office for Information Security (BSI). With the help of this methodical basis, we were able to develop a well-founded catalog of measures that already adapts the security level to future KRITIS standards. As a result, the new control center is already comprehensively protected today, even before the first stone has been laid.
The introduction of an ISMS involves further steps, including a risk analysis. The SECIRA risk management tool competently supports this process, as it automatically creates risk analyses and can save human resources.
„As part of our new building project for the Integrated Regional Control Center Ostwürttemberg (fire department, emergency medical services and civil protection), we commissioned ICS GmbH to conduct an initial assessment for introducing an Information Security Management System (ISMS) in accordance with ISO/IEC 27001. The goal was to gain a comprehensive overview of our current information security posture and to implement initial security processes — in line with the recommendations of the German Federal Office for Information Security (BSI) and the IT-Baseline Protection approach. The expertise of the ICS specialists impressed us from the very beginning. Their structured methodology and transparent communication throughout the entire project were particularly noteworthy. Their well-founded recommendations and solutions helped us lay the groundwork for the future security architecture of our control center — one that not only meets today’s requirements and regulatory obligations, but is also prepared for future developments. We greatly appreciate the professional collaboration and are pleased to recommend ICS GmbH.“
