Skip to main content Skip to footer
De­prec­ated element
ISMS and DSMS as
ex­tern­al service

ISMS with CISIS12®– GCS – Geno Cor­por­ate Ser­vices GmbH uses otris soft­ware for im­ple­ment­a­tion

GCS – Geno Cor­por­ate Ser­vices is a wholly owned sub­si­di­ary of the Gen­os­senschafts­verb­and Bayern e.V. The company advises more than 200 com­pan­ies that are close to the co­oper­at­ive system. Its con­sult­ing ser­vices include ex­tern­al data pro­tec­tion man­age­ment and in­form­a­tion se­cur­ity man­age­ment ac­cord­ing to CISIS12®. In this area, GCS – Geno Cor­por­ate Ser­vices GmbH real­ises an optimal support of its clients through a lot of pro­fes­sion­al know-how and the use of the special soft­ware otris isms.

The range of ser­vices offered by GCS – Geno Cor­por­ate Ser­vices GmbH is broad and cross-sec­tor­al. The ser­vices include taking over the tasks of the company data pro­tec­tion and in­form­a­tion se­cur­ity officer. Clients who com­mis­sion an ex­tern­al DPO or ISB expect an ef­fect­ive and com­pli­ance-com­pli­ant hand­ling of sens­it­ive, se­cur­ity-rel­ev­ant tasks. An ad­di­tion­al ex­pect­a­tion of all clients is the im­prove­ment of ef­fi­ciency: By award­ing the mandate, in-house re­sources are to be spared or used for the core busi­ness.

The goal of an ISMS.
Frank Gund­lach works at GCS – Geno Cor­por­ate Ser­vices GmbH and assists their clients as a con­sult­ant as well as an ex­tern­al In­form­a­tion Se­cur­ity Officer (ISB) and Data Pro­tec­tion Officer (DPO). The IT se­cur­ity expert sum­mar­ises the re­quire­ments in the area of in­form­a­tion se­cur­ity: “The goal of an ISMS is es­sen­tially to improve the in­form­a­tion se­cur­ity of a company in a risk-ori­ented and con­tinu­ous manner. In doing so, it is of great im­port­ance that the ISMS or the goals of the ISMS are ori­ented towards the or­gan­isa­tion’s cor­por­ate goals in order to support the ful­fil­ment of these.”

„We are very sat­is­fied with otris - both with the system and with the advice.“

Frank Gund­lach
Data Pro­tec­tion and In­form­a­tion Se­cur­ity Spe­cial­ist, Gen­os­senschafts­verb­and Bayern e.V.

The way to the goal with CISIS12®
To improve the in­form­a­tion se­cur­ity of his cus­tom­ers and clients, Frank Gund­lach relies on CISIS12®. The stand­ard is a de­vel­op­ment of the IT-Sich­er­heitscluster e. V. and is used in par­tic­u­lar by small and medium-sized or­gan­isa­tions. “For many SMEs and mu­ni­cip­al­it­ies, ISO 27001 cer­ti­fic­a­tion is a major hurdle due to its scope and com­plex­ity,” says Frank Gund­lach. “CISIS12®, on the other hand, is a low-threshold entry point that can be mastered even with man­age­able re­sources.” And com­pan­ies that want to migrate to ISO 27001 at a later date, for example, have already laid a very good found­a­tion with CISIS12®. GCS – Geno Cor­por­ate Ser­vices GmbH cus­tom­ers are sup­por­ted both in the im­ple­ment­a­tion and in the further de­vel­op­ment and main­ten­ance within the frame­work of the PDCA cycle.

In use: otris privacy
GCS – Geno Cor­por­ate Ser­vices GmbH pre­vi­ously used otris privacy as data pro­tec­tion man­age­ment soft­ware. After the ex­ten­sion with the ISMS solu­tion, the company ad­di­tion­ally uses the system for the in­form­a­tion se­cur­ity man­age­ment of its clients. Both to prepare the CISIS12 cer­ti­fic­a­tion process and to main­tain the cer­ti­fic­a­tion status.

“Of central im­port­ance for our work is the risk man­age­ment, re­port­ing and mon­it­or­ing of otris isms,” ex­plains Frank Gund­lach and sum­mar­ises further ad­vant­ages: Thanks to the rights man­age­ment and web-based access, clients can be op­tim­ally in­volved. Fur­ther­more, the flex­ib­il­ity is con­vin­cing: all common stand­ards (e.g. CISIS12®, ISO 2700x, BSI IT-Grunds­chutz) can be mapped in­di­vidu­ally or in com­bin­a­tion. And last but not least, it was an ad­vant­age for GCS – Geno Cor­por­ate Ser­vices GmbH that data (e.g. assets or pro­cesses) from the DSMS could be used for the in­form­a­tion network in the ISMS.

Very sat­is­fied with support and soft­ware.
GCS – Geno Cor­por­ate Ser­vices GmbH cur­rently sup­ports 20 man­dates in the area of data pro­tec­tion and ISMS with the otris privacy SUITE solu­tions. The in­tro­duc­tion of the system into the pro­cesses of GCS – Geno Cor­por­ate Ser­vices GmbH as well as at cus­tom­er sites is running smoothly. Special ad­apt­a­tions were not ne­ces­sary, as the solu­tion offers suf­fi­cient scope to map the company’s own routines – e.g. for check­lists or audit routines. “We are very sat­is­fied with otris – both with the system and with the con­sult­ing”, Frank Gund­lach de­scribes the co­oper­a­tion and adds: “The soft­ware fits our re­quire­ments per­fectly and the con­sult­ing has an answer to every ques­tion”.

About GCS – Geno Cor­por­ate Ser­vices GmbH
Geno-Cor­por­ate Ser­vices GmbH or “GCS” for short is a sub­si­di­ary of the Gen­os­senschafts­verb­and Bayern e.V. (Bav­ari­an Co­oper­at­ive As­so­ci­ation) and is tra­di­tion­ally rooted in the Bav­ari­an co­oper­at­ive system. The cli­en­tele of GCS – Geno Cor­por­ate Ser­vices GmbH con­sists of around 200 dif­fer­ent com­pan­ies from the sectors of food pro­duc­tion, food trade and food ana­lys­is, phar­ma­ceut­ic­al trade, rural goods trade, travel agency, in­sur­ance and real estate ser­vices, man­u­fac­tur­ing in­dustry as well as social and char­it­able ser­vices and in­sti­tu­tions. GCS – Geno Cor­por­ate Ser­vices GmbH has also es­tab­lished a com­pre­hens­ive range of ser­vices for Volks­banks and Raif­feis­en­banks, with which the company sup­ports the local re­gion­al banks in meeting the in­creas­ingly ex­tens­ive legal re­quire­ments.

https://www.geno-cs.de/

Back to navigation Back to content Back to navigation Back to content