The industry environment from the perspective of IT risk management

General
The trigger for IT risk management runs like a central theme through all industries. The management, as the ultimately responsible body, must answer the question of continually increasing requirements with regard to transparency, Basel II involves IT much more in the evaluation of a company than was the case a year ago, the dependence on and the costs of IT are increasing year by year and, last but not least, attacks on IT systems are becoming more and more subtle and refined.
IT managers/CIOs must ensure transparency simply for their own benefit, and their investment suggestions must be prepared in a management-like way so that they do not fall victim to lack of understanding on the part of management.

Questions that need to be asked in this context are:
- What risks could arise for the company from the use of IT?
- How much IT does the company really need?
- How safe is the IT?

Below are excerpts from the list of industries in which we have extensive experience. You also benefit from this know-how (see references).

Energy suppliers – network suppliers
EU regulations, the opening of the market, the privatisation of companies and fusions are forcing energy suppliers to keep a much tighter control on their costs than was the case a few years ago. The regulatory authorities demanded measures to increase transparency by forcing network operations to be decoupled from generation and retailing. In addition to that, directives were passed regarding risk management.

Automotive
BMW has recently announced new demands on its suppliers via the media. IT risk management in compliance with ISO 17799 is demanded as standard within 2 years. All suppliers directly involved in the supply chain are primarily affected by this. The automotive industry has recognised the possible threats due to the high dependence of the companies on IT and is consistently pursuing a proactive course.

Food industry
The industry is characterised by extremely tough competition, which is fought above all through prices. Accordingly, the companies have to struggle with low margins. Besides the availability of production and goods management systems, the confidentiality of information is at the centre of attention. Whether secret recipes or manufacturing processes, both are items of information that exist in digital form in companies nowadays and which could result in the very existence of the company being threatened in the event of a breach of confidentiality.

IT service providers
Following the bursting of the IT bubble, the market is showing isolated, powerful signs of life. The basic prerequisites for participating in the interesting market segments, such as outsourcing, are an unconditionally qualitative and innovative way of thinking and the control of costs. The slowly regained trust in the industry will be confirmed by measures to bring transparency and comprehensibility (IT governance).