ISMS-oxide and you (Information-Security-Management-System for hackers) WHY2025

ISMS-oxide and you (Information-Security-Management-System for hackers)
.ical

2025-08-12 14:00–14:50, Delphinus
Language: English

This is NOT an introductory talk about ISMS (Information-Security-Management)! It is about my experiences and reflections about real-life issues when deploying an ISMS. There will be a section dedicated to 'hacking' an ISMS, though.

The presumed audiences are:
- individuals working in the realm of IS-/IT-security management
- hackers working in environments that expose them to ISMS-related TODOs (I'll try to put these things into context!)
- anyone trying to understand this ISMS-nonsense

Agenda:
1) Introduction
- Management-Systems
- Information-Security-Management-Sytems (ISO 27001, German BSI IT-Grundschutz)
2) Theory
- Corporate overlords (a.k.a "hacking ISMSes")
- Risk-Management
- Compliance(-Reporting)
- Certifications
3) Reality
- What? Why? How?
- Anecdotes
4) Conclusion

Juergen Pabel

IT-Security-Management guy at day, hacker/maker at night.

This speaker also appears in:

Retrospective: Adventures with CircuitPython

ISMS-oxide and you (Information-Security-Management-System for hackers) .ical 2025-08-12 14:00–14:50, Delphinus Language: English

ISMS-oxide and you (Information-Security-Management-System for hackers)
.ical

2025-08-12 14:00–14:50, Delphinus
Language: English