On the use of Information Security Management Systems by German Energy Providers

Pape, S.; Schmitz, C.; Kipker, D-K. and Sekula, A.

, 2020

Abstract

Along with other requirements, the German critical infrastructure programme required critical infrastructure providers, i.e. energy providers to implement an ISMS. We used the unique opportunity to observe the implementation and surveyed all German energy providers in autumn 2016 and 2018. Our study shows, that most of the energy providers implemented an ISMS between our surveys and reported an perceived increase in information security suggesting that the critical infrastructure programme fulfilled its purpose.


Bibtexinformation systemssecuritycritical infrastructureslawcs4esidate

Bibtex

@Misc{PSKS20iccip,
  author       = {Sebastian Pape and Christopher Schmitz and Dennis-Kenji Kipker and Andre Sekula},
  title        = {On the use of Information Security Management Systems by German Energy Providers},
  year         = {2020},
  howpublished = {Accepted for presentation at the {Fourteenth IFIP Working Group 11.10 International Conference on Critical Infrastructure Protection}},
  month        = {03},
  keywords     = {SIDATE, security, information systems, CS4E, critical infrastructures, law},
}