Secure through TISAX certification

TTTech Auto relies on A1 Digital to audit and implement the information security standards defined by the automotive industry.

“Information security has become essential for cooperation in the automotive industry. Many companies already require a valid TISAX certificate as a condition of collaboration. Since we have already had very good experience with the Offensity product of the A1 Digital in vulnerability management, we have once again relied on the security specialists from A1 Digital for the TISAX certification, who advised us very professionally and very successfully in the run-up to and during the certification.”

Günther Fischer, Director IT at TTTech Auto

TTTech Auto operates under the umbrella of the TTTech Group and offers solutions for the challenges of future vehicle generations. The company specialises in secure software and hardware platforms for automated driving used in serial production programmes. With its technology solutions, TTTech Auto ensures safety and electronic robustness for a more automated world.

As a technology company with a focus on the automotive industry, TTTech Auto wanted to be certified according to the TISAX information security standard defined by the automotive industry. The Association of the Automotive Industry (VDA) has developed a questionnaire, the VDA Information Security Assessment, which forms the basis for the examination by accredited certification service providers.

In order to achieve the “Very High” test goal in the categories “Information Security” and “Connection of Third Parties”, TTTech Auto has secured the support of A1 Digital International GmbH, which is already continuously monitoring THE IT infrastructure of TTTech Auto for potential and real security vulnerabilities. A1 Digital should help to develop and implement concrete measures for the TTTech Auto Organisation from the requirements of the VDA ISA. In addition, A1 Digital should conduct an independent pre-audit and accompany TTTech Auto in the final audit by the TISAX examiner.

At the beginning, the security specialists of A1 Digital carried out an analysis of the actual situation at TTTech Auto and checked whether all audit-relevant categories of the VDA ISA requirements catalogue for the sites to be certified can be implemented. The result was noted in a gap analysis that included recommendations on what action was needed to close the vulnerabilities. The action plan was prioritised according to the degree of deviation and the estimated effort for TTTech Auto.

All necessary measures were planned as milestones in an implementation project. In addition, A1 Digital TTTech Auto's security specialists actively supported the implementation of the measures as part of project management by adapting, updating and improving existing information security policies and processes. In addition, they helped optimise the INFORMATION Security Management System (ISMS) of TTTech Auto and all relevant processes, e.g. in the design and modification of security-relevant processes, such as risk management, auditing, third party risk management, change management, user management and asset management, created process documentation and collected evidence for the execution of the processes. They also contributed their expertise in the implementation of technical security measures such as security log management or vulnerability management.

For the TISAX self-assessment, the security specialists provided a TISAX auditor, who carried out a preliminary audit of the measures and made further recommendations. Last but not least, they prepared the actual TISAX test and accompanied TTTech Auto organisationally during the audit and follow-up.

“Information security has become essential for cooperation in the automotive industry. Many companies already require a valid TISAX certificate as a condition of collaboration. Since we have already had very good experience with the Offensity product of the A1 Digital in vulnerability management, we have once again relied on the security specialists from A1 Digital for the TISAX certification, who advised us very professionally and very successfully in the run-up to and during the certification.”, explains Günther Fischer, IT Director at TTTech Auto.

Learn more about A1 Digital's security services