The IT Baseline Protection Catalogs, or IT-Grundschutz-Kataloge are a collection of documents from the German Federal Office for Security in Information Technology (BSI) that provide useful information for detecting. Okt. Since the “IT-Grundschutz Manual” is called “IT-Grundschutz Catalogues”. You will find in the IT-Grundschutz Catalogues the modules. 31 Oct on the BSI’s website at return address is in Germany) to the BSI, IT-Grundschutz-Hotline, Postfach 20 03

Author: Menris Kagazil
Country: Italy
Language: English (Spanish)
Genre: History
Published (Last): 3 September 2009
Pages: 362
PDF File Size: 4.68 Mb
ePub File Size: 17.24 Mb
ISBN: 200-6-78858-537-5
Downloads: 48291
Price: Free* [*Free Regsitration Required]
Uploader: Gurisar

Retrieved from ” https: Through proper application of well-proven technical, organisational, personnel, and infrastructural safeguards, a security level is reached that is suitable and adequate to protect business-related information having bsi grundschutzhandbuch protection requirements. Besides such details, I would not argue that SP99 is the more mature and detailed grundschutzhanebuch proposaland as a matter of fact bsi grundschutzhandbuch are teaching SP99 basics in our seminars.

Each individual component follows the same layout. Baseline protection can only be ensured if all measures are realized. About Us Digital Bond was founded in and performed our first control system security assessment in the year Be bsi grundschutzhandbuch as bsi grundschutzhandbuch may from a technical point of view, gdundschutzhandbuch is one killer argument for The ISOx controls are abstract enough so that they can be adopted to the special environment of every bzi.

The measures catalogs summarize the actions necessary to achieve baseline protection; measures appropriate for several system components are described centrally.

Now, concerning the German speaking context, Grundschutzhandbuxh is not dominant despite of the millions of German bsi grundschutzhandbuch payer money poured into it. The table contains correlations between measures and the threats they address. Both components must be successfully implemented to guarantee the system’s security. Having just recently met Mr. In cases in which security needs are greater, such protection can be used as a basis bsi grundschutzhandbuch further action. Federal Office for Security in Information Technology.

BSI – IT Grundschutz – Micro Focus Community

In this way, a network of individual components arises in the baseline protection catalogs. The topic of this article may not meet Bsi grundschutzhandbuch general notability guideline.

To respond to Hans comment about focusing only on ISA — I would be keen to understand if people feel that this would work together with, for example, NERC CIP in North America, or any mandatory standard that may be put in place in Europe which I know bsi grundschutzhandbuch be a number of years awaybsi grundschutzhandbuch in any other country?

Individual threat grundshutzhandbuch are described briefly. I have made it a habit to accept all the blame for pretty much everything. Detail technical controls grundschutzhandbucn their implementation cannot be standardized.

bsi grundschutzhandbuch Please help to establish notability by citing reliable secondary sources that bsi grundschutzhandbuch independent of the topic and provide significant coverage of it beyond its mere trivial mention.

If the measures’ realization is not possible, reasons for this are entered in the adjacent field for later traceability. These threat catalogs follow the general layout in layers. In this way, a security level can be achieved, viewed as adequate in most cases, and, consequently, replace the more expensive risk assessment.

During realization of measures, personnel should verify whether adaptation bsi grundschutzhandbuch the operation bsi grundschutzhandbuch question is necessary; any deviations from the initial measures should be documented for future reference. They summarize the measures and most important threats for individual components.

In my mind, expressed in a simplified manner, bsi grundschutzhandbuch SCADA there is ONE asset, the continued operation of the automated factory, while in office automation there is a multitude of individual systems with a flexible universal back-up system, the human. These comments can be extended to most standards.

BSI IT Grundshutz

The official draft, a. They have used this methodology quite extensively bsi grundschutzhandbuch projects in German speaking countries, and have also extended the associated GSTOOL software tool to include specific assets such as SCADA systems and substation control systems. It serves as the basis for the IT baseline protection certification of an enterprise. Over the last sixteen years we have helped many asset owners and vendors improve the security and reliability of their ICS, and our S4 events are an opportunity for technical experts and thought leaders to connect and move the ICS community forward.

Your email address will not bsi grundschutzhandbuch published. Why do a bsi grundschutzhandbuch analysis? These statements still apply: