Compliance Solutions
How IS Decisions supports
TISAX compliance

Do your users access the corporate network via a secured connection (e.g. VPN) with strong authentication?

Must

Ensures strong 2FA to secure remote user access to the network, including VPN, Remote Desktop, offline and off-domain connections.

Do you apply state of the art user authentication procedures?

Must

Offers secure TOTP and HOTP two-factor authentication (2FA) to verify each user’s identity.

Do you use superior procedures to authenticate privileged user accounts (e.g. Privileged Access Management, two-factor authentication)

Should

Enables the administrator to set granular access rights for different types of employees, including privileged users, by individual user, groups of users, or organizational units. Strong 2FA makes access controls more robust and enhances the ability to authenticate privileged user accounts.

Depending on the risk assessment, do you enhance authentication procedure and access control with supplementary measures (e.g. permanent access monitoring with respect to irregularities or use of strong authentication, automatic logout or disabling in case of inactivity)

High protection needs

Monitors all logon and logoff activity in real time to ensure that the only people who can access vital data are the people who need to. UserLock alerts administrators to any suspicious, disruptive or unusual logins based on time, location and device. Automatically logs off a session after a specific length of idle time to prevent unauthorised users accessing information from unattended workstations. What’s more UserLock can set authorised timeframes for certain users’ access and force workstations to log off outside these hours.

Before gaining access to data of very high protection needs, do you authenticate users with state-of-the-art strong authentication (e.g. two-factor authentication)?

Very high protection needs

Applies strong authentication (2FA) at the login, before they access any data of very high protection needs that you may store on your network.

Do you use unique and personalized user accounts?

Must

Ensures that nobody can log on to the system without uniquely identifiable credentials, and prevents concurrent logins with the same set of user credentials — helping to eradicate dangerous password sharing practices.

Do you immediately ensure login information is changed if potential compromise is suspected?

Must

• Alerts admins in real time of suspicious activity, and can automatically end sessions after idle time or from a refused logon.
• Allows admins to set up potential ransomware alerts, and run scripts to disable a user when alerts are set off.

Do you ensure the use of medium (e.g. ownership factor) is secure where you apply strong authentication?

Should

Provides 2FA via the secure medium of a device the user owns (a mobile phone or token).

Do you apply the minimum (“need-to-know”) principle?

Must

Enables admins to set granular access rights for different types of employees to ensure they can only access the information they need to do their job.

Do you allocate rights on a need-to-use basis and according to the role and/or area of responsibility?

Should

Gives admins the ability to create temporary policies for users that need access on a need-to-use basis.

Do you ensure that normal user accounts are not granted privileged access rights?

Should

Ensures normal user accounts can be blocked from accessing resources such as servers that are reserved for privileged accounts.

Do you adapt user access rights after the user has changed (e.g. to another field of responsibility)?

Should

Enables administrators to apply security policies by AD group or OU, which are updated automatically when a user moves from one group or OU to another.

Do you determine and fulfill security-relevant requirements regarding the logging of activities of system administrators and users?

Must

• Records, audits and archives all network logon events, across all session types, from a central system.
• Audits all access and changes to files and folders, and immediately alerts administrators to suspicious behaviour.

Do you have a defined, established procedure for escalating relevant events to the responsible body (e.g. security incident report, data protection, corporate security, IT security)?

Should

• Allows admins to automatically send alerts and reports based on user access events.
• Allows admins to automatically send alerts and reports based on Windows file, folder or server access events.

Do you have adequate monitoring and recording of any actions on the network that are relevant to information security?

Should

• Monitors all logon and logoff activity in real time to ensure that the only people who can access vital data are the people who need to. Administrators can also set up customized alerts on suspicious access based on user risk level.
• Monitors all files and folders and alerts in real time on any suspicious file access activity on your network. FileAudit also records all file access events per user.

Do you log cases of access during connection and disconnection of external networks (e.g. remote maintenance)?

High protection needs

Enforces MFA and monitors and protects user access from VPN, IIS and Remote Desktop connections, even without internet access or access to the domain.

Do you log any access to data of very high protection needs as far as technically feasible and as permissible according to legal and organizational provisions?

Very high protection needs

Monitors and logs all user access to and changes to files and folders, allowing administrators to tie access events to specific users.