Good to know
Do you know the BSI’s “Best Practice” recommendations for critical infrastructures? We have summarised what you need to know about authorisation management for CRITIS in a blog.
IT Security Act 2.0
Much criticism and new requirements have come with the IT Security Act 2.0 since it came into force in May.
The aim of the renewed law is to increase security for IT systems and to strengthen the position of the Federal Office for Information Security (BSI).
Companies with a special public interest (e.g. with great economic importance) are now subject to the same obligations as operators of critical infrastructures. Who exactly will have to fulfil the requirements for CRITIS in the future (threshold values) is still being defined by the responsible authorities:
The obligations include, among other things, the reporting of security breaches and compliance with minimum protection standards for IT systems. These are self-reported by companies as part of a self-declaration on certifications, security audits and measures.
Take early action to protect your IT systems. Automated and secure self-service solutions for the access and identity journey of your employees and customers support you in firmly anchoring IT security in your company.
Are your emails securely encrypted? Internal and external communication is a second, central aspect of IT security issues. With the gpg4o® end-to-end encryption system, you use an established add-in for email encryption in Microsoft Outlook 2013/2016/2019® that can be seamlessly integrated into the user interface.
From here, messages and their attachments can be securely encrypted and decrypted, signed and checked. The clever tool is easy to install and simple to use.
There are many possibilities for more IT security. We will be happy to advise you on the right solutions for you.
