The basis of an IT Grundschutz concept is the initial abdication of a detailed risk analysis. It is emanated from global dangers and renounced a differentiated classification of amount of damages and event risks.
There are build three protection requirement categories to ascertain the protection requirement of the analysis object and to choose - based on that - the accordingly personal, technical, organisational and infrastructural security measures from the IT Grundschutz manual.
We want to inform you about the practical realisation at this point systematically and compactly