top of page

TISAX® CONSULTANCY

OUR TISAX CLIENTS
We are proud to work with these amazing companies

HOW WE CAN HELP

Implementation and ENX registration

We will guide you through every step of the implementation process, ensuring that your organisation achieves TISAX label. We will help you to register on the ENX platform.

Document drafting

We will draft any document you may need such as Policies, Procedures, Risk Management, and all other documentation as required.

Choosing the TISAX audit provider

We will help you to obtain TISAX audit quotes and choose the audit provider

Preparation for the TISAX audit

We will make sure your business and all of your relevant internal stakeholders are ready for the TISAX AL2 or AL3 audit. We will ensure that all relevant evidence is gathered before the audit.

Assistance during the TISAX audit

We will represent your company during the TISAX audit and communicate policies and evidence to the auditor.

After the TISAX audit

We will assist you with preparing the corrective action plan in case of any non-conformities. We will advise on the best way to close all audit findings in the short period of time.

About TISAX and our consultancy services

​

We are a team of UK-based TISAX consultants who deliver services worldwide. We have a 100% success rate and have helped companies in the UK, Germany, France, Poland, the US, Brazil, China, and Australia achieve TISAX AL2 and AL3 labels.

​

We offer a truly unique, customised service based on your requirements. Our consultants will help you fully prepare for TISAX audits and obtain competitive audit quotes.

 

Please note that we offer TISAX consultancy services but not certification audit services. 

​

Our aim is to make achieving the TISAX label less stressful for your team by taking on all the burden. We will fully manage your project to guarantee you meet deadlines.

​

TISAX is an information security assessment based on ISO 27001, 27017 and some automotive-specific controls. OEMs created TISAX assessments to ensure information security in their supply chain. 

​

Many organisations worldwide have already achieved TISAX labels, so OEMs have a choice to select suppliers with valid TISAX labels. To ensure your company's continual delivery of goods or services to OEMs, you need to achieve the TISAX label.

​

Usually, OEMs contact you with a request to achieve an AL2 or AL3 label by a particular deadline. If you have received such a request, contact us now for a free consultation and overall advice on your project.

 

The project starts typically with us performing a gap analysis of your current policies and procedures against TISAX requirements. We would then be able to advise you on any gaps and the most efficient way to close them. We will prepare the project plan and agree with you on important milestones, including dates for your TISAX audit.

​

Preparation for the audit phase timelines would depend on your readiness for the audit. It could take as little as 1 month or extend to 6-12 months. Once we understand your information security management system (ISMS), we will be able to advise you on a realistic timeframe.

 

We will collaborate with various stakeholders in your business, such as Top Management, IT, HR, Legal, Facilities, DevOps, etc., to ensure they all understand their roles and responsibilities. We could deliver TISAX training to your staff.

​

As part of the ISMS implementation phase, we would also perform risk assessments and internal audits, deliver Top Management Reviews and advise on best information security practices. We will draft all required ISMS documentation.

​

Once you are ready for the TISAX audit, we will represent your business during the audit. We will establish contact with the audit provider and share TISAX documentation with them before the audit. We will be present during all TISAX audit sessions. Once the audit is completed and the audit report is ready, we will advise you on closing any audit findings (non-conformities and observations). You will have 9 months after the audit to remediate the findings. If your overall audit result is minor non-conform, you will be able to share a temporary TISAX label with your partner. 

​

TISAX labels are valid for 3 years from the date of your initial TISAX assessment, so you will not have annual surveillance audits as in ISO 27001. During this 3-year cycle, we will help you to maintain your Information Security Management System to ensure continual improvement.

​

Please see below the overview of the usual TISAX process explained in 5 steps. At the bottom of this page, you can review the list of our TISAX clients.

​

Make sure you contact us today for a no-obligation TISAX consultancy quote. We will help you throughout the whole process, and you will not regret choosing us as your consultants.

bottom of page