Germany’s Federal Office for Information Security (called the BSI for its German abbreviation) is the national cybersecurity authority and charged with promoting IT security in that country.
ISA is working with BSI and its president, Arne Schönbohm, to develop a version of the Cyber-Risk Oversight Handbook tailored to the unique policy environment of Germany. We are currently looking at holding one-day events with the BIS in Munich, and Frankfurt am Maim. The events will be attended by a health mix of boards of directors, senior management, chief information security officers and IT managers, all drawn from a variety of industrial sectors.
ISA hosted Schönbohm during a recent trip to the United States, where he sought to better understand how American business are addressing cybersecurity issues. He met with senior leaders from the National Association of Corporate Directors and the Center for Audit Quality. He also had a candid, off-the-record dinner with industry executives, including from the defense and manufacturing sectors.
Our relationship with Schönbohm predates his tenure as BSI president. Schönbohm previously served as president for the Cyber Security Council of Germany and in 2014 he and ISA President Larry Clinton signed an agreement for the two associations to work together on cybersecurity issues.
The two organizations pledged to work for a European version of the Cybersecurity Social Contract developed by the ISA, in which governments provide economic incentives for private companies to go beyond what they regard as commercially appropriate levels of cybersecurity. Read ISA-CSCG joint position policy paper (pdf).
Members of the CSCG include large and medium-sized companies, operators of critical infrastructure, as well as experts and policymakers in cybersecurity. Through its members, the association represents 1.6 million workers in the German economy and 1.8 million members of other associations and clubs.