{"id":6327,"date":"2024-07-01T11:47:35","date_gmt":"2024-07-01T09:47:35","guid":{"rendered":"https:\/\/vda-isa-berater.com\/connection-between-nis-2-and-tisax-does-nis-2-also-affect-companies-with-tisax-certification\/"},"modified":"2024-07-03T10:02:36","modified_gmt":"2024-07-03T08:02:36","slug":"connection-between-nis-2-and-tisax-does-nis-2-also-affect-companies-with-tisax-certification","status":"publish","type":"post","link":"https:\/\/vda-isa-berater.com\/en\/connection-between-nis-2-and-tisax-does-nis-2-also-affect-companies-with-tisax-certification\/","title":{"rendered":"Connection between NIS-2 and TISAX\u00ae: Does NIS-2 also affect companies with TISAX\u00ae certification?"},"content":{"rendered":"\t\t<div data-elementor-type=\"wp-post\" data-elementor-id=\"6327\" class=\"elementor elementor-6327 elementor-6320\" data-elementor-post-type=\"post\">\n\t\t\t\t<div class=\"elementor-element elementor-element-66d7304 e-flex e-con-boxed e-con e-parent\" data-id=\"66d7304\" data-element_type=\"container\">\n\t\t\t\t\t<div class=\"e-con-inner\">\n\t\t\t\t<div class=\"elementor-element elementor-element-9fd0944 elementor-widget elementor-widget-text-editor\" data-id=\"9fd0944\" data-element_type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<p>The topics of NIS-2 and TISAX are of great importance for companies dealing with IT security and data protection. Although both terms are relevant in different areas of IT security, there are some connections and potential overlaps.<\/p>\n<p><strong>What is TISAX\u00ae<\/strong><strong>?<\/strong><\/p>\n<p>TISAX\u00ae (Trusted Information Security Assessment Exchange) is an information security standard specifically for the automotive industry. Developed by the ENX Association, TISAX is designed to meet the requirements of ISO\/IEC 27001 and ensure that suppliers and service providers in the automotive industry maintain a high level of information security. A TISAX\u00ae label, often referred to in common parlance as a TISAX\u00ae certificate, is therefore an important seal of quality for companies in this sector to prove their information security measures.<\/p>\n<p><strong>What is NIS-2?<\/strong><\/p>\n<p>NIS-2<strong>(Network<\/strong>and <strong>Information<\/strong> <strong>Security<\/strong>Directive <strong>2<\/strong>) is the revised version of the European Union&#8217;s NIS Directive. It aims to strengthen cyber security in the EU member states. NIS-2 primarily affects operators of critical infrastructures and important service providers that are essential for maintaining essential social and economic activities. The directive requires these companies to take strict security precautions and report cyber incidents.<\/p><p><br><\/p>\n<p><strong>Does NIS-2 also affect companies with a TISAX\u00ae label<\/strong><strong>?<\/strong><\/p>\n<p>Although the NIS 2 directive and the TISAX\u00ae standard do not overlap directly, there are points of contact that are relevant for companies that have to comply with both standards. If a company in the automotive industry operates both critical infrastructures and has a TISAX\u00ae certificate, it must take the requirements of both directives into account.<\/p>\n<p><strong>Connections and synergies between NIS-2 and TISAX\u00ae<\/strong><strong>:<\/strong><\/p>\n<ol>\n<li><strong>Increased security requirements:<\/strong> Both directives require high standards of information security. Companies that have the TISAX\u00ae assessment have already implemented many security measures that can also be helpful for NIS-2 compliance.<\/li>\n<li><strong>Risk management:<\/strong> Both TISAX\u00ae and NIS-2 attach great importance to effective risk management. Companies that have a TISAX\u00ae label usually already have robust risk assessment and mitigation processes in place that can also meet the requirements of NIS-2.<\/li>\n<li><strong>Reporting of security incidents:<\/strong> NIS-2 requires the reporting of cyber incidents to the relevant authorities. Companies that are TISAX\u00ae audited have already implemented procedures for detecting and reporting security incidents, which facilitates compliance with this NIS 2 requirement.<\/li>\n<\/ol><div><br><\/div><div><br><\/div>\n<p><strong>Conclusion:<\/strong><\/p>\n<p>While TISAX\u00ae and NIS-2 address different contexts of information security, there are overlaps that companies should be aware of. Especially for companies in the automotive industry that have a TISAX\u00ae label and are also covered by the NIS-2 directive, it is important to integrate both standards and utilize synergies in order to design their security strategies effectively and efficiently.<\/p>\n<p>Companies should therefore carefully review the requirements of both sets of regulations and ensure that they are fully prepared to comply with both TISAX\u00ae and NIS-2. An integrated approach to information security can help to meet legal requirements while maximizing the security of information systems.<\/p>\n<p><span style=\"text-decoration: underline;\"><strong><a href=\"https:\/\/kritis-berater.com\/home\/ceo-workshop\" target=\"_blank\" rel=\"noopener\">Further information on NIS-2 and KRITIS can be found on our topic page.<\/a><\/strong><\/span><\/p>\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t","protected":false},"excerpt":{"rendered":"<p>The topics of NIS-2 and TISAX are of great importance for companies dealing with IT security and data protection. Although both terms are relevant in different areas of IT security, there are some connections and potential overlaps. What is TISAX\u00ae? TISAX\u00ae (Trusted Information Security Assessment Exchange) is an information security standard specifically for the automotive [&hellip;]<\/p>\n","protected":false},"author":3,"featured_media":6333,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"rank_math_lock_modified_date":false,"footnotes":""},"categories":[1],"tags":[],"class_list":["post-6327","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-unkategorisiert"],"_links":{"self":[{"href":"https:\/\/vda-isa-berater.com\/en\/wp-json\/wp\/v2\/posts\/6327","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/vda-isa-berater.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/vda-isa-berater.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/vda-isa-berater.com\/en\/wp-json\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/vda-isa-berater.com\/en\/wp-json\/wp\/v2\/comments?post=6327"}],"version-history":[{"count":3,"href":"https:\/\/vda-isa-berater.com\/en\/wp-json\/wp\/v2\/posts\/6327\/revisions"}],"predecessor-version":[{"id":6342,"href":"https:\/\/vda-isa-berater.com\/en\/wp-json\/wp\/v2\/posts\/6327\/revisions\/6342"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/vda-isa-berater.com\/en\/wp-json\/wp\/v2\/media\/6333"}],"wp:attachment":[{"href":"https:\/\/vda-isa-berater.com\/en\/wp-json\/wp\/v2\/media?parent=6327"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/vda-isa-berater.com\/en\/wp-json\/wp\/v2\/categories?post=6327"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/vda-isa-berater.com\/en\/wp-json\/wp\/v2\/tags?post=6327"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}