Trusted Information Security Assessment Exchange
TISAX - the standard for the Automotive sector
TISAX – Trusted Information Security Assessment Exchange is an international standard used in the Automotive industry, defining the criteria for maintaining the required level of confidentiality when working with confidential information and exchanging that information with business partners.
The standard was developed by the German automotive industry association VDA (Verband der Automobilindustrie) and covers different issues (VDA ISA, Information Security Assessment) related to information security. The foundation of the VDA ISA is the global standards ISO/IEC 27001 and ISO/IEC 27002 defining the framework of the Information Security Management System.
An organization that has implemented the requirements described in VDA ISA and which has obtained required TISAX labels through appropriate audit, may share such labels and audit results through TISAX platform with interested business partners. Obtaining a TISAX label certifies that an organisation has reached a mature information security level and in most cases removes any need for additional 2nd and 3rd party audits during cooperation. Already today compliance with VDA ISA and acquiring TISAX certification and labels is required by major automotive companies.
TISAX can be implemented either as a stand-alone implementation or as part of an implementation of an information security management system compliant with ISO 27001.