Security culture meets system architecture

• MHP exhibiting at it-sa in Nuremberg, Hall 7, Booth 7-301
• Highlights: AI security, NIS2, ISO 27001, TISAX®, and the human firewall
• Practical presentations with specific insights into AI security and the human firewall

Ludwigsburg – From October 7 to 9, 2025, the management and IT consultancy MHP will be at it-sa in Nuremberg – Europe’s largest trade fair for IT security. MHP experts will be presenting a wide range of modern security solutions at Booth 7-301 in Hall 7, with a particular focus on AI security, the implementation of the ISO 27001 and TISAX® standards, and preparations for the coming into force of NIS2. In addition, visitors can get detailed information about the subject of the human firewall – which involves targeted measures to raise awareness among employees. 

Protection strategies for secure AI

Artificial intelligence is becoming increasingly important for almost all companies and organizations in the long term. AI systems differ from classic IT systems, resulting in new security risks that are difficult to calculate – due to manipulable training data, for example, unclear decision-making channels, new kinds of development processes, and the operation itself. Typical attack vectors range from data poisoning and adversarial attacks to model inversion and membership inference attacks.

Holistic solutions are therefore needed to secure AI systems accordingly, starting from development right through to the runtime. Kevin Euler, Associated Partner at MHP: “Standards such as ISO/IEC 27090 define a systematic security framework for the first time, while the EU AI Act provides the legal framework, especially for high-risk systems. In addition, the OWASP ML Security Top 10 and MITRE ATLAS offer guidance on how to defend against AI-specific threats.”

Ready for NIS2 with ISO 27001 and TISAX®

The subject of NIS2 may not be new, but it remains highly topical. It will be a while yet before the final legislation in Germany is enacted – the date is currently expected to be sometime toward the end of 2025. Companies should therefore use the remaining time to prepare for the new requirements.

Those who are already certified according to ISO 27001 or TISAX® will have the competitive edge and a key time advantage. ISO 27001 covers many of the requirements of the NIS2 Directive, while TISAX® is specifically tailored to the demands of the automotive industry. Furthermore, TISAX® includes special requirements, such as prototype protection, third-country transfers, and data protection.

“Good preparation and certification significantly increase the level of security maturity, which is a clear advantage,” said Kevin Euler. “However, this doesn’t necessarily mean that companies need to meet both standards. For SMEs in particular, it is a good idea to take a holistic approach to evaluating their own infrastructure before selecting the appropriate standards in a targeted manner – this saves both time and money.”

Security culture meets system architecture

A high level of security maturity and effective security solutions significantly reduce the risk of incidents. One key factor nonetheless remains difficult to control: the human being. Most security incidents can be traced back to human error – due to phishing, social engineering, careless disclosure of sensitive data, or neglected software updates, for example.

This makes it all the more important to create a human firewall – making the workforce part of a consistent security solution. To this end, companies and organizations must draw attention to the subject and raise awareness accordingly. By communicating well, creating a responsible culture, and empowering people, employees can become the strongest factor in any security concept. 

Presentations and showcases at it-sa

Visitors can find out more about these and other subjects at the event in Hall 7, Booth 7-301. In addition, expert talks offer practical insights and provide a compact overview of current security strategies.

If you would like to make an appointment to talk to one of our experts, please do not hesitate to contact us in advance. We look forward to your message and your visit.

TISAX® is a registered trademark of ENX Association. MHP Management- und IT-Beratung GmbH has no business relationship with ENX Association. The mention of the TISAX® trademark does not represent any statement by the trademark owner as to the suitability of the services advertised herein.