The IT-Grundschutz Compendium is out now. Together with the BSI standards, it forms the basis for anyone who wants to establish information security management systems comprehensively.

The Federal Office for Information Security (BSI) organizes on 1.-2. February 2022 digitally the 18th German IT Security Congress.

Compliance teams face challenging times ahead with increasing regulations in the new normal. The pace of change continues unabated, and this year looks like being no exception. We should expect to continue to see significant increase in digital transformation in terms of AI, multiple standards management, automation and simplification of compliance-related processes.

CVE-2021-44228, or Log4Shell, is a critical remote code execution vulnerability in a highly popular Java library used in millions of applications as part of their logging infrastructure. This library sits at the core of almost every Java application built in recent years.

Keeping up with a tradition of issuing regular compliance digests, we are happy to announce that the SCM Compliance Digest 2021 is ready for download.