TISAX

TISAX compliance ensures that a company meets the security requirements set by the automotive industry. It's often a prerequisite for doing business or partnering with major automotive manufacturers and suppliers.

Gap Analysis - At AKRUP, we begin your TISAX journey with a comprehensive Gap Analysis. Our experienced consultants will assess your current information security setup through in-depth document reviews and structured interviews with key personnel. This process identifies how closely your organisation aligns with TISAX requirements and highlights any gaps that must be addressed. You’ll receive a clear, actionable report outlining your current position and the precise steps needed to achieve the appropriate TISAX assessment level.

Implementation - Once gaps are identified, AKRUP provides hands-on assistance to implement the necessary controls and documentation. We work collaboratively with your team to develop or revise your Information Security Management System (ISMS) in full alignment with TISAX criteria. This includes drafting security policies, procedures, risk assessments, and any additional documentation required to demonstrate compliance. Our goal is to seamlessly integrate TISAX requirements into your existing business processes while ensuring operational efficiency.

Audit - Choosing the right audit provider is a critical step in the TISAX process. AKRUP guides you in selecting a certified and suitable TISAX audit provider based on your industry, size, and business needs. We ensure your team is well-prepared through pre-audit readiness sessions and internal checks. During the audit itself, our consultants can act as your representative, providing clarification and demonstrating your compliance posture to the audit team—maximising your chances of a successful outcome.

Post Audit - Achieving a TISAX label doesn’t end with the audit. AKRUP continues to support your organisation during the Corrective Action Plan (CAP) phase, assisting in resolving any non-conformities or improvement recommendations identified during the audit. We also help prepare for follow-up assessments or surveillance reviews to maintain your certification and demonstrate continual improvement.

ISMS Maintenance - To ensure long-term compliance, AKRUP offers ongoing ISMS maintenance services. On an annual basis, we update documentation, perform internal audits, and carry out risk assessments as required by the TISAX framework. Our continuous support ensures your organisation stays audit-ready and aligned with evolving security expectations from partners and stakeholders.

TISAX (Trusted Information Security Assessment Exchange) – It is a security standard specifically developed for the automotive industry to ensure secure data exchange between manufacturers, suppliers, and service providers.

Developed by ENX Association – TISAX was established by the ENX Association based on the ISO/IEC 27001 standard but with additional requirements tailored to the automotive sector.

Covers Confidentiality, Availability, and Integrity – The assessment focuses on protecting sensitive information, including prototypes, personal data, and supplier relationships.

Assessment Process & Labels – Companies undergo an assessment by accredited audit providers, and based on the results, they receive a TISAX label that can be shared with business partners.

Mandatory for Many OEMs & Suppliers – Many original equipment manufacturers (OEMs) and major suppliers require their partners to be TISAX certified to ensure compliance with information security standards.