Cupertino, CA March 3, 2022 – The OTRS Group has now optimized its information security management system (ISMS) CONTROL powered by OTRS, which enables companies to ensure compliance and minimize risks. CONTROL is a FOX-certified ISMS that supports information security management according to ISO/IEC 27001 with more than 100 pre-configured controls, enabling a quick start to comprehensive and systematic information security management – a challenge many IT managers are currently facing: Over 80 percent of IT executives in Germany consider the technology, data and operating environments in their companies to be more complex than necessary and estimate that they are therefore not optimally protected against cyber attacks. This is one of the findings of the current PwC study “Digital Trust Insights 2022,” for which more than 3,600 business and technology executives worldwide were surveyed.
Minimize risks, improve information security
“Attack surfaces and risks arise in companies not only where explicit security systems such as antivirus software or firewalls are breached, but also where processes are not secured at all or security processes are not implemented well,” explains Francisco Cruz, Managing Director LATAM at OTRS S.A. de C.V. “This is the case, for example, when secret information can easily be passed on to unauthorized persons or when there is an insufficient or late response to a hacker attack from outside. Here, systematic risk management is needed to identify attack surfaces, and clear process definition and, at best, automation are needed to successfully implement information security and compliance.” The international standard ISO/IEC 27001 defines the requirements that companies must meet for a documented and certifiable information security management system – CONTROL powered by OTRS supports the concrete introduction and systematic implementation in the company.
Information security fully under control according to ISO/IEC 27001
CONTROL powered by OTRS enables companies to get started quickly with ISO/IEC 27001-compliant and certifiable information security management: The international standard requires the management of 114 so-called controls, which define the framework for designing company-specific information security with all relevant aspects: from policy and supplier management to operational and environmental security. For ISO/IEC 27001 certification, companies must address each control and monitor its status. With the optimized CONTROL powered by OTRS, this can now be done without much effort. The stored controls can be easily assigned to the respective team for processing, actions to fulfill the controls are tracked and managed, information is exchanged and attachments are logged directly at the control. CONTROL powered by OTRS is thus quickly ready for use by companies and enables comprehensively documented ISMS operations.
The highlights at a glance
- Ready-to-use ISO 27001 data: With over 100 controls already preconfigured, companies can ensure information security and compliance from day one.
- Audit-proof documentation: Every control action is logged and stored in an audit-proof manner.
- Compliance readiness monitoring: Each control can be documented with its completion or update status. Dashboards and widgets make visible what has been completed and what is still in an endangered status.
- Resource management: Resource management facilitates compliance, audit planning and management, and training schedules.
About OTRS Group
OTRS Group is the manufacturer and the world’s largest provider of the service management suite OTRS, awarded with the SERVIEW CERTIFIED TOOL seal of approval. It offers flexible solutions for process and communication management to companies of all sizes, saving them time and money. Among its customers are Lufthansa, Airbus, IBM, Porsche, BSI (Federal Office for Security in Information Technology), Max Planck Institute, Toyota and Hapag Lloyd. The company consists of OTRS AG and its five subsidiaries OTRS Inc. (USA), OTRS S.A. de C.V. (Mexico), OTRS Asia Pte. Ltd. (Singapore), OTRS do Brasil Soluções Ltda. (Brazil) and OTRS Magyarország Kft. (Hungary). OTRS AG is listed on the basic board of the Frankfurt Stock Exchange. For more information, see www.otrs.com.