• Privacy Policy
  • Imprint
SRC Security Research & Consulting GmbH
  • Home
  • for customers
    • Topics
    • Solutions
  • SRC blog
  • about SRC
  • Careers
  • Contact
    • How to reach us in Bonn
    • How to reach us in Wiesbaden
  • English
    • Deutsch
  • Search
  • Menu Menu

KRITIS Contact Point

The IT Security Act (ITSiG) requires operators of critical infra­struc­tures to establish a contact point. On constant standby, the contact point exchanges infor­mation with the Federal Office for Infor­mation Security (BSI) about signif­icant IT malfunc­tions. The scope and formal structure of the infor­mation is pre-defined.

In the practical operation of the contact point, the infor­mation security management system (ISMS), which must also be imple­mented, must be adapted in two ways. On the one hand, warnings from the BSI and the protective measures to be intro­duced must be commu­ni­cated to the relevant author­ities within the own organ­i­sation. On the other hand, it must be techni­cally and organ­i­sa­tionally ensured that the necessary infor­mation on signif­icant malfunc­tions is trans­mitted to the contact point without delay and in the required detail. There, the malfunction is then assessed, the infor­mation processed and a decision made if a report is to be sent to the BSI.

The necessary adapta­tions of your management system for infor­mation security in accor­dance with the require­ments of the BSI and the practical imple­men­tation in your company differ in individual cases.

We are happy to offer you the oppor­tunity to draw on the expertise of our experts when estab­lishing and maintaining your contact point.

We support you in

  • Regis­tration of the contact point with the BSI
  • Adjustment of internal commu­ni­cation and escalation processes
  • Defin­ition of suitable security measures based on reports from the BSI

Contact

Randolf Skerka

Randolf Skerka

Head of IS Management
SRC Security Research & Consulting GmbH
  • +49 (228) 2806 — 136
  • randolf.skerka@src-gmbh.de

Topics

  • Healthcare sector

  • Infor­mation Technology in Critical Infra­struc­tures — KritisVO

    Informationstechnologie in Kritischen Infrastrukturen – KritisVO

Find out about the topics that we support with our services.

Publi­ca­tions

  • IT Security Act: Commu­ni­cating the contact point

    Responding to BSI security messages and
    reporting security incidents

    in: KU Health Management 9/2017
    By Prof. Dr. Andreas Becker and Randolf Skerka

Security for your Inbox

Stay up to date with the
SRC Newsletter

SRC Newsletter

Address

SRC
Security Research & Consulting GmbH
Emil-Nolde-Str. 7
D‑53113 Bonn

Telefon: +49 (228) 2806 — 0

Articles from SRC

  • Appli­cation areas of Digital Identities: Digitally repre­senting — and protecting — physical identities6. February 2023 - 20:44
  • SRC goes GEAR (Global Executive Assessor Roundtable)!11. August 2022 - 16:20
  • 8 digit BINs and PCI DSS26. February 2022 - 23:12
© Copyright - SRC Security Research & Consulting GmbH
  • Privacy Policy
  • Imprint
Scroll to top