Preparation for the implementation of an information security management system (ISMS) while taking industry-specific requirements into account"

To abide by the planned IT security law and in order to provide a better protection for its own so-called "critical infrastructure", the EMSCHERGENOSSENSCHAFT in cooperation with secunet shall be soon introducing an information security management system (ISMS). The implementation of these security measures together with the development of the security concept will be based on the recommendations of the BSI (Federal Office for Information Security). The focus was set on the areas of automation and process control engineering, while giving special consideration to the IT Baseline Protection Catalogues and the ICS Security Compendium of the BSI. It was also necessary to take into account the industry-specific requirements and recommendations for the energy and water management sectors.