Trusted Information Security Assessment Exchange (TISAX) 2 Day course

Trusted Information Security Assessment Exchange (TISAX)

2 Day course

Principle

In order to enable trainees to understand the method of controlling according to the requirements of TISAX VDA 5.1, which consists of 8 domains and strategies for implementing effective control measures in detail regarding various techniques for controlling to comply with VDA ISA 5.1, as well as evaluating information system risks within the scope of the company requesting TISAX certification, and understanding the risk management guidelines related to the level of risk identified from the assessment, this concept is important and provides a plan for the organization to reduce potential risks and establish control measures to comply with the information security system standards of the automotive industry

Course objective

• To made awareness and understand the requirements of TISAX
• Understand TISAX® assessment requirement for implementation.
• Understand information security requirement in Automotive Sector/Supply Chain

Course Content

Date / Time	Course Agenda
Day 1 09:00 – 16:00	Training course contents are introduction of TISAX. Standard History of TISAX VDA 5.1 Principle of Information Security Management Systems Define the management system scope and customer expectations. Define the strategic for cyber security protection and Business Impact Analysis Cyber Security according to ISO/IEC 27002 and Guideline risk management ISO/IEC 27005 Cyber Security Control as per ISO/IEC 27002 Cyber Risk Assessment as per ISO/IEC 27005 TISAX Requirements domain 1- 2 IS Policy and Organization Human Resource TISAX Requirements Domain 1-2
Day 2 09:00 – 16:00	TISAX Requirements domain 3- 4 Physical Security and Business Continuity Identify and Access Management TISAX Requirements domain 5 – 6 Cyber Security Supplier Relationship TISAX Requirements Domain 7 – 8 Compliance Prototype protection Process to certified TISAX Compliance Labeling Audit Scope and Objective Site and Locations Implementation Plan and Audit Cycle
16:00 – 16:30	Brief and Questions

Who should attend?

Representatives from management, executives, board of directors, IT personnel, representatives from various departments, and those responsible or involved in complying with the requirements of the information security system for the automotive industry, are responsible for assessing risks, developing control plans, and reducing risks to achieve the objectives, goals, and plans set by customers.