i-doit Add-on VIVA2
This add-on supports you in setting up an information security management system (ISMS) in accordance with the BSI's IT-Grundschutz methodology.
Functions
- Advanced Risk analyses according to BSI IT “Grundschutz” 200-X, seamlessly integrated with the CMDB
- Management of the BSI IT “Grundschutz” catalogs
- Creation of reports and diagrams
- Wizard support for collecting data
Manufacturer
Please note
The initial import of the basic protection compendium creates additional objects that require a license. The amount depends on the version of the basic protection compendium. For this reason, it is only possible to use this add-on with a license size of 5,000 objects or more.
Description
The update of the methodology of BSI IT “Grundschutz” from 100-X to 200-X, which was published by the Federal Office for Information Security (BSI) in October 2017, also raises the risk analysis to a new level. To support this methodology there is the proven Baseline protection add-on in a completely revised version. The add-on was not only revised in terms of content, but above all it was technically modernized. Like the well-proven Baseline protection add-on, the new Baseline protection 2 supports you in setting up an Information Security Management System (ISMS).
Core functions
Baseline protection contains the terms Availabilty, Integrity, Confidentiality, Authenticity. The Baseline protection 2 add-on supports you in implementing the BSI IT “Grundschutz” methodology 200-X. Unique is the combining of the processes of risk management with those of the IT asset management in the same tool. Due to the integration in the i-doit CMDB, the maintenance of the foundation data is a one-time exercise and the processes can merge. The add-on integrates natively into i-doit and supports all CMDB core functions such as authorization management, templates, reporting, API and many other convenient functions for data maintenance.
The IT “Grundschutz” Compendium Edition 2018 issued by BSI will be fully imported. This allows you to perform state-of-the-art analysis and assessment of your IT environment. Additional wizards simplify data entry by combining several procedure steps. Information on protection requirements, security analyzes and mitigation measures are documented. Clear summaries and reports inform about where there is sufficient security already and where there is room for improvement. The reference documents required for the audit by BSI are created based on this documentation and are available in different formats. Existing customers of the Baseline protection 1.0 add-on can also use the Baseline protection 2 Add-on.
Application scenarios
- Analysis of Availability, Integrity, Confidentiality and Authenticity of IT and the processes according to IT “Grundschutz” 200-X.
- Establishment of an Information Security Management System (ISMS)
- Building the basis for the certification according to BSI or ISO27001
Who do we recommend this add-on for?
Organizations that have to carry out IT Risk Management according to BSI IT “Grundschutz” 200-X and who want to combine this with existing data of the CMDB and the necessary maintenance processes.
Pricing & support
small
1.000 Objekte
-
-
medium
5.000 objects
€ 538,00
€ 860,00
per year
per year
large
10.000 objects
€ 1.007,00
€ 1.610,00
per year
per year
flex
> 10.000 objects
upon request
upon request
per year
per year
Do you have any questions on this add-on?
If you need more information about this add-on, please send us a message. We will contact you in a timely manner.
