Navimatix and HITGuard - a success story
Information security management according to the TISAX standard
About Navimatix
Navimatix GmbH is a software development company based in Jena, Germany, that has been operating successfully on the market for 15 years. The focus is on the design, maintenance and further development of individual software solutions for small and large companies from various sectors, such as the automotive industry, IoT, transportation & logistics and healthcare. In its constant search for sustainable solutions, Navimatix introduces the latest technologies to meet individual customer requirements.
The use case: TISAX certification of the ISMS
Navimatix is involved in the automotive industry's value chain. Therefore, the development of information security is an essential requirement for the company. Achieving the TISAX label is a particularly important goal. Navimatix is now in the process of preparing for TISAX certification with the help of HITGuard. In the course of this, the existing ISMS was also deepened, professionalized and optimized in its processes using our tool.
Why HITGuard?
Various risk management tools were evaluated by Navimatix. They found that HITGuard had a clear advantage over the other tools:
you have everything in one.
The risks are combined with the associated checks, and measures and controls can be linked. You will also find all the necessary tools for documentation and project management associated with the ISMS in a standardized and clearly structured interface. In short: it combines all the processes required for risk management.
Working with the tool
The introduction of HITGuard has enabled Navimatix to switch from many Excel spreadsheets. All analyses are now managed with workflow support. Risk assessments and analyses of deviations and protection requirements can be versioned historically. All changes and developments in the various runs are always documented in a traceable manner. Excel can't do that!
Reporting the results has also become much easier. Previously, it was often very challenging to create overviews. Now, filterable evaluation tables, various reports and dashboards can be configured dynamically and individually.
There was extremely positive feedback from an external consultant on the use of tools for Navimatix. He accompanied internal audits with gap analyses and BIAs that were carried out in HITGuard. After observing the risk assessment, action management and more, this consultant is convinced: HITGuard is much more target-oriented than the old-fashioned, so-called "spreadsheet work". "At the end of the day, this not only makes information security management more secure, but also the company itself," he says.
Highlights
Ms. Theresa Pünsch, the information security officer at Navimatix, now works with HITGuard almost every day in preparation for certification. For her, there are special highlights when working with the tool. These include the following functionalities:
- The system for the protection needs analyses to be carried out is very sophisticated. It also meets the requirements for documenting the assessments.
- The overview options with different table views are configurable. This allows you to work very specifically and tackle certain problems in a targeted and efficient manner.
- The email notifications from the tool are extremely helpful. They automatically remind those responsible of everything they have to do: implementing measures, carrying out checks and other tasks - either planned once or regularly. All of this no longer has to be laboriously scheduled via the calendar. Navimatix is particularly pleased that it no longer has to deal with this media disruption.
Recommendation
Those responsible at Navimatix, Ms. Pünsch in her role as ISB and the Managing Director, Mr. Späthe, recommend working with HITGuard to both large and small companies. According to them, "actually every organization" needs risk management, regardless of topics such as information security and quality management. The switch from manually maintained lists to holistic risk management processes makes work easier with immediate effect.
Key data | |
---|---|
The company | Navimatix GmbH |
Industry | IT - Software development |
Head office | Jena, Germany |
Number of employees | approx. 40 |
HITGuard modules and add-ons in use |
Basic modules Risk management, measures and controls, Audit management add-on Information security knowledge database Knowledge database TISAX Self Assessment |
Management systems | 1 |
active users | 5 |