Training in TISAX ®

The training program of Key Indices Consulting GmbH in 2025 will be carried out in Tunisia, Morocco, France, Belgium, Canada, Germany, Switzerland, England (UK) and the USA in French, English and German on the following topics:

TISAX® Fundamentals Version 6.0.3

The Information Security Management System (ISMS) – ISO 27001

TISAX® Information Security Internal Auditor Training

Lead Implementer training of TISAX® and ISO 27001 standards in information security

ISO 27001 Lead Implementer Training in Information Security

Introduction to Data Protection (GDPR)

ISO/SAE 21434 – Road Vehicles Cybersecurity Engineering

TISAX VSC – Trusted Information Security Assessment Exchange Vehicle Cyber Security

Application Security - ISO 27034

The fundamentals of ISO 27001 Information Security

TISAX® and ISO 27001 Internal Auditor Training in Information Security

Training of ISO 27001 Internal Auditors of Information Security

TISAX® Lead Implementer Training in Information Security

Introduction for VDA ISA & TISAX®

Information Security – Incident & Business Continuity Management (TISAX® & ISO 27001)

ISO 26262 – Road Vehicles – Functional Safety

NIST SP 800-53 – Security and Privacy Controls for Information Systems and Organizations

Support topics offered by Key Indices Consulting

Support for obtaining the TISAX® Label Version 6
Training on the Fundamentals of TISAX® Version 6
Support for ISO 27001: 2022 Certification
Training for internal auditors TISAX® and ISO 27001 in information security
Transition from version 5 to version 6 of TISAX
Training for Lead Implementer of TISAX® and ISO 27001 standards in information security
Carrying out internal audits according to TISAX® and/or ISO 27001
Support for product safety ISO/SAE 21434, TISAX VCS
Support for functional safety Automotive standard ISO 26262
Consulting on the protection of personal data GDPR
Support for ISO 9001, ISO 14001 and IATF 16949 certification
contact us

The content of the TISAX® Fundamentals Training Version 6.0.3 is as follows:

Day 1

Introduction to the Information Security Management System (ISMS)

Overview and definition of security standards

Information Security Management System (ISMS) according to VDA ISA and ISO/IEC 27001

Why TISAX?

Who defines the notion of "safety" in the automotive sector?

How can we effectively prove safety?

The ENX and TISAX® association:
• What is ENX?
• What does the ENX association do?

The 4 steps of the process of obtaining the TISAX® Label:
• Online registration with the ENX association
• Implementing the ISMS according to TISAX®
• TISAX assessment audit by a certifying body
• Exchange of assessment results with OEMs

The Fundamentals of TISAX®

  • Legal basis
  • The TISAX® evaluation scope
  • TISAX® Evaluation Objectives and Labels
  • Selection of the Evaluation Objective
  • Protection needs and assessment levels
    • Assessment Level 1 (AL 1)
    • Assessment Level 2 (LA2)
    • Assessment Level 3 (AL 3)
  • Assessment levels and assessment methods
  • Assessment objectives and your own suppliers
  • Registration Fees
  • Le « Simplified Group Assessment »
  • Project Phases:
    • Phase 1: Gap Analysis
    • Phase 2: Implementation
    • Phase 3: Preparation for certification
  • Self-assessment according to the VDA ISA Version 6.0 standard
  • Maturity levels according to VDA ISA Version 6.0
  • Audit process according to TISAX® VDA ISA
    • Accredited audit service providers
    • Kick-Off Meeting
    • Initial assessment
    • Corrective Action Plan Assessment
    • Follow-Up Assessment
    • Scope extension
Formation TISAX, Training in TISAX, Trainingsprogramm TISAX

Day 2

Understand the requirements and measures of the VDA ISA Version 6.0 standard:

  • IS Policies and Organization
  • Information Security Policies
  • Organization of Information Security
  • Asset Management
  • IS Risk Management
  • Assessments
  • Incident Management
  • Human Resources
  • Physical Security and Business Continuity
  • Identity and Access Management
  • IT Security/Cyber Security
  • Cryptography
  • Operations Security
  • System acquisitions, requirement management and development
  • Supplier Relationships
  • Compliance
  • Prototype Protection
  • Physical and Environmental Security
  • Organizational Requirements
  • Handling of vehicles, components and parts
  • Requirements for trial vehicles
  • Camouflage
  • Requirements for events and shootings
  • Data Protection
  • Data Protection Policies
  • Organization of Data Protection
  • Processing directory
  • Data protection impact assessment
  • Data transfers
  • Handling requests and incidents
  • Human Resources
  • Instructions

Key Indices Consulting GmbH is a Consulting, Engineering, Audit and Training firm based in Germany that operates in all sectors of industrial and service activities and mainly in the automotive sector.

Based on an agile and innovative business model for the transfer of skills, we support our clients, mainly, in the development and implementation of management systems in the areas of information security, data protection (TISAX® & ISO 27001) and Data Protection (EU-GDPR).

contact us

Consulting services for Integrated Management Systems and cybersecurity standards for the Automotive Industry

Information security (TISAX, ISO 27001, etc.)
Quality management (ISO 9001, IATF 16949)
ISO/SAE 21434, TISAX VCS Product Security
Environmental management (ISO 14001)
Functional safety ISO 26262 automotive standard
Data protection (GDPR)
Carrying out training and audits
contact us

The TISAX® template package includes the following documents and materials

Information security policy
Policy for information security in projects
Policy for managing documents and records
Asset management policy
Classification policy
Software management policy
Risk management policy
Policy for hiring new employees
Policy for dealing with information security incidents
Policy for information security for employees
Policy for business continuity management (BKM) & emergency planning
Policy for mobile working
Policy for personnel security and training concept for information security and data protection
Policy for handling mobile IT devices and mobile data media (mobile device management)
Policy for security zone concept and access protection
Prototype protection policy
Policy for disposal of data media and paper documents
Policy for handling identification devices
Policy for operational safety
Password policy
Policy for cryptography
Policy for internet usage
Policy for change management
Policy for development of hardware and software
Policy for supplier management
Partner policy
Policy for cloud usage
Compliance policy
Data protection policy

All templates in our package are presented in a clear and concise manner. They appeal to a wide range of users, including non-technical staff. We have carefully created them to comply with the latest TISAX® standards, while remaining flexible enough for organizations to customize them.

Our TISAX® document templates offer organizations a cost-effective way to quickly obtain a TISAX® label. Our templates save organizations time and resources. They also meet the best standards for security and data protection.

contact us