IT Security Concept Development for RheinPorts
Challenge
The RheinPorts Information System (RPIS) is a cross-border IT platform designed to optimize the barge traffic on the Upper Rhine. In addition to overseeing the functional and technical RPIS implementation, RheinPorts tasked HPC with developing an IT security concept for RPIS' use and operation aligned with the current German BSI Standard and RheinPorts shareholders' requirements. Legal validation by specialized IT lawyers also ensured compliance with the 2018 European General Data Protection Regulation (GDPR).
Tasks Performed
- Analysis of updated BSI Standard 200-2 (published in October 2017)
- Incorporation of the latest version of the IT baseline protection
- Customer-specific realisation of the BSI Standard
- Definition of technical and organisational security measures regarding the topics of web application, identity and access control, data protection and security, data center, development of RPIS and treatment of security incidents
- Clarification of legal requirements concerning data protection and IT security in the involved countries
- Compliance with the 2018 EU General Data Protection Regulation
Benefit
HPC's development of a secure IT concept for RPIS not only ensured compliance with German BSI and European GDPR standards but also bolstered operational reliability and data protection for RheinPorts' cross-border barge traffic optimization efforts on the Upper Rhine.
HPC's Expertise:
Cybersecurity
Location:
Weil am Rhein, Germany
Client:
RheinPorts GmbH
Financed by:
Client
Duration:
10/2017 - 02/2018