Transport & traffic

QSEC® – Compliance and Information Security for KRITIS operator in the transport and traffic sector


With regard to the IT Security Law, the compliance with legal and information security requirements is significant for the transport and traffic sector:

  • Aviation
  • Maritime navigation
  • Inland navigation
  • Rail transport
  • Road traffic and
  • Logistics

The companies and organizations in the transport and logistics sector are considered to be critical infrastructures that are relevant to the state and the population in terms of their functionality.

With the increasing globalization of production and sales and the increasing numbers of global travels, economies are becoming more and more dependent on the mobility of goods and people.

Disturbances in the transport system can have a massive impact on many areas, e.g. in terms of:

  • Production and delivery delays,
  • The insufficient supply of essential goods or
  • In rescue and health care.

According to §8a BSIG, operators of critical infrastructures have to prove that their IT security is “state of the art”.

To meet the requirements for compliance with applicable laws and for information security, companies should establish an Information Security Management System.

The GRC Software QSEC supports companies from the transport and traffic sector comprehensively and sustainably in the introduction, implementation and operation of a management system for

  • Data protection according to GDPR
  • ISMS according to the requirements of ISO 27001 and/or the
  • ISMS according to BSI standard (IT-Grundschutz)

All sector-specific additional requirements, such as B3S, can be integrated and implemented in QSEC.

We would be pleased to show you QSEC and outline the implementation best practices of your industry-specific requirements.


References & case studies


QSEC Online-Demo