Information Security Management System – TISAX

Become a reliable partner for your customers in the automotive industry. Our Information Security Management System will help you save money you would spend on identified non-conformities.

Get a free consultation
Information Security Management System – TISAX
According to statistics, companies protect only 5% of their data properly.
Support from analysis to audit
We will explain the requirements of the TISAX standard and implement it together, including risk assessment. We will also provide support during internal audit.
Fast implementation
We can help you meet the TISAX requirements in just a few sessions.
No operation disruptions
Your company will remain operating fully. We will help you implement TISAX without disrupting the company’s operation.
What is TISAX?

What is TISAX?

TISAX (Trusted Information Security Assessment Exchange) certification proves that the systems of companies operating in the automotive industry have the required level of information security. 

Our specialists will implement an information security management system in your company to meet the TISAX requirements according to the chosen class: 

  • protection class “normal”  
  • protection class “high”  
  • protection class “very high”  

We also ensure the implementation of TISAX requirements for the protection of prototypes and their parts.   

What is TISAX?

How do we implement it?

Implementation of the Information Security Management System according to TISAX requirements includes:   

  • Comparative analysis of the current state of the system compared to the security requirements of TISAX.    
  • Risk assessment and suggestion of security measures to address the risks.   
  • Support during the implementation of the Information Security Management System, including the preparation of all documentation.    
  • Evaluation of the Information Security Management System and support during TISAX certification.  
How do we implement it?

TISAX implementation process

Initial consultation
Firstly, we will give you a brief training on information security issues, which will give you an overview of the information security management system requirements.
Comparative analysis
We will perform a comparative analysis to determine the current status of your information security system
The scope of implemented services depends on the required level of information security. If you have an ISMS system in place according to the ISO/IEC 27001 standard, the scope of the TISAX implementation is shortened.

Why should you get TISAX from us?

Many years of experience
Our team of experts has more than 20 years of experience in the field of information security.
Hundreds of different experiences
The diversity of our clients and more than 100 completed security projects allow us to implement the TISAX standard according to your needs.
We have experience and certifications
Lead auditor ISMS (ISO/IEC 27001)
Information Security System Manager ISO/IEC 27001:2014


The implementation requirements are similar to those for ISMS according to  ISO/IEC 27001  and cybersecurity, with an emphasis on physical security and protection of IT information, especially information about prototypes and their parts.  

Due to our consultants' experience with implementing information security management systems across the whole range of activities, our team will provide direct support all the way from the assessment of the current state of the system to certification.

We implement both standards. The requirements for ISMS implementation are similar, however, mandatory requirements for TISAX are administratively simpler and adapted to the requirements of the automotive industry.  If you meet the ISO/IEC 27001 requirements, implementing TISAX is easier. But that doesn't mean you don't need TISAX. Individual audit for TISAX is carried out only once every three years (compared to the annual audits for ISO/IEC 27001). 

Leave us your contact information and together we will find the ideal solution for your security

Jaromír Žák
Jaromír Žák
Jaromír is involved in the development and strategy of our business and is responsible for the quality of all services.
Fast reply
Our consultant will get back to you within 24 hours of enquiry.
Individual approach 
We will help you with your problem and find the ideal customized solution for you.
Ahead of the competition
You will always take away something extra, to keep you a step ahead of the competition.
U Uranie 18, 170 00 Prague 7

CRN: 06291031
VAT: CZ06291031

NGSS has implemented an information security management system in accordance with ČSN ISO/IEC 27001:2014. NGSS Information Security Management System (ISMS) Policy here.
Ethical code
Not sure what to do?
Contact us.