Buchholz Software

Haiko Buchholz

  • Geboren: 1963, Rostock
  • Study: Dipl.-Ing. Communication Technology
  • Self-employed since 1994
  • Certified data protection consultant (TÜV Nord)
  • Certified data protection auditor (TÜV Rheinland)
  • Certified Information Systems Security Professional (CISSP, ISC²)
  • Certified Information Security Officer (TÜV Nord)
  • Certified expert for information and telecommunication systems (DESAG)

From the idea to the product

The market is saturated. It shouldn't be a problem to find software that covers both the data protection and information security needs of companies of all sizes, that serves the interests of the company and the people who work there or for whom the company works. The minimum requirements sound relatively simple:

  • Documentation of business processes
  • Recording of relevant assets (systems, contracts, software, firmware, versions, licenses, patents, buildings, knowledge, infrastructure, ...)
  • Description of the type and scope of data processing
  • Plausible, reproducible, complete risk determination (effects of errors, probability of occurrence, use of measures with justification, residual risks)
  • Processes for routine tasks and for checking the effectiveness of measures (PDCA)
  • Real-time detection and handling of vulnerabilities
  • Resilience status against various attack scenarios
  • Compliance with the requirements to "ensure a high common level of security of network and information systems across the Union" (NIS 2)
  • Compliance with the requirements of the GDPR
  • Dovetailing of risk treatments for data protection and information security

(c) 2024 Haiko Buchholz