BSI Certification


Certification according to ISO/IEC 27001

Certification according to BSI basic IT protection for the Managed Security Services divisions

The Bundesamt für Sicherheit in der Informationstechnologie (BSI), the German Federal Office for Information Security, certified indevis GmbH in compliance with the international standard ISO/IEC 27001 based on the IT-Grundschutz (BSI), the BSI basic IT protection methodology. The certification covers all IT systems and processes required for the provision of the managed security services as well as the two datacenters, including the network and communication links provided to clients.

Certification according to ISO/IEC 27001 for our services

The information technology offered by indevis IT-Consulting and Solutions GmbH in Munich with a branch office in Hamburg extends across all fundamental services provided in the areas of Managed Security, Managed Network and Managed Data Center Service Providing.

Certification according to ISO/IEC 27001 for our services

Certification procedures

The BSI is a civil higher German federal authority under the umbrella of the German Federal Ministry of the Interior (BMI). It is the central certification agency for the security of IT systems in Germany, issuing the IT basic protection catalogs containing recommendations for standard protection measures for typical IT systems. The international standard ISO/IEC 27001 (Information technology – Security techniques – Information security management systems – Requirements) specifies the requirements for the production, introduction, operation, monitoring, maintenance and improvement of a documented information security management system under consideration of possible risks in the entire organization.

Certificate

Large corporations, authorities and public organizations, in particular, seek ISO/IEC certification in order to give their clients, partners or citizens the certainty that their data is protected. ISO/IEC 27001 certification based on the IT basic protection certifies that the systems observed in an inspected company satisfy the requirements laid out in ISO/IEC 27001, and that the requirements specified in the BSI IT basic protection methodology are also successfully implemented. The ISO/IEC 27001 certification, in particular, demonstrates that IT security enjoys great regard in the applicable company, that an IT security management structure is in place and that a defined IT security level has been achieved at a specified time.

indevis GmbH pursues its mission of providing managed security services as well as outsourcing services of the highest quality at all times. As a certification authority, the BSI has attested by awarding us its certificate to a particularly high degree of maturity in the operation of our IT systems. This means that we have proof of an effective and efficient IT security management system in our company.

The security strategy paves the way for IT security in the company through the management team. The security organization ensures that an infrastructure exists to safeguard the information security. Information (data) represents a value that is recorded and classified.

Guarantees of data security

  • Personnel security: Job descriptions, user training, behavior in the event of security-relevant incidents
  • Physical security: Systems, zones, measures
  • Operational security: Processes and responsibilities, system planning and acceptance, network management, intrusion detection, virus and spam protection, etc.
  • Access security: User rights, access checks, entry checks