Finance

Branchen Icon

Finance

IT-Security for insurance companies, banks & Co

To meet the requirements, which are subject to the finance sector, it is necessary to integrate the management of IT-security risks into the process of corporate risk management. These requirements concern the banking sector in particular, which is bound to various regulations (MARisk, Base II/III and BCBS-documents) to record IT security risks as operational risks. For this reason, business continuity management must be oriented towards these risks. In order to ensure a holistic consideration of these aspects, it is recommended to introduce ISMS according to IT security law and ISO/IEC 27001:2013.

If the focus is usually on the organizational aspects of the above points, we place particular emphasis on the consideration of technical aspects and the associated interaction between these two aspects.

To control these various IT-risks or the ISMS as a whole, the implementation of a key number system to measure the IT-security level is recommended.

Our solution portfolio includes

Your contact person

Ihr Ansprechpartner

Manfred Peine

Senior account manager
Tel. +49 2173 20363-0
Mail info-at-admeritia.de

Reference projects

  • Technical security tests network infrastructure
    • Large German bank
  • Web application tests
    • Large German bank
  • PCI-DSS Audits
    • PCI-Provider

more reference projects...

Committee work

  • ISECOM-Board
    • ISECOM
  • Member US-Chapter
    • OWASP
  • ISO IEC JTC1 SC27 (WG3 und WG4)
    • ISO

more committee work...

Lectures

  • ISMS Certification - What happens now?
    • 3. Kölner IT-Security Konferenz
    • Nov 2016
  • IT Security Law: What is in store for you
    • it-sa 2015
    • Oct 2015
  • Recommended implementation of a detailed risk assessment according to IEC 62443 - 2 - 1
    • VDI Automation
    • Jun 2015

more lectures...

Publications

  • IT Security Law - What is in store for you
    • Wirtschaftsinformatik & Management
      Volume 7, Issue 4 , pp 18-27
    • Aug 2015
  • Recommended implementation of a detailed risk assessment according to IEC 62443 - 2 - 1
    • VDI Automation
    • Jun 2015
  • The next step for BSI, ISO2700x & Co: Operational Security Management with the Open Source Security Testing Methodology Manual (OSSTMM)
    • IT + Business
    • Oct 2010

more publications...