Information security
Information security is a priority given an increasingly interconnected global environment and the rapid progress of digitalization. It is essential that companies identify risks in good time, establish countermeasures early on, and react quickly and decisively to incidents. Our top priority is to protect our information technology (IT, such as apps for customers) and operational technology (OT, such as control software in switches) infrastructure for the future. The Chief Information Security Officer (CISO) is responsible for information security in DB Group. The CISO reports to DB Group’s Chief Information Officer (CIO) and to the Management Board. This ensures that senior executives are aware of these topics. Key responsibilities are to further develop information security in DB Group and develop a permanent information security culture. This includes establishing future-oriented processes, measures and solutions based on internationally recognized, workable standards that apply equally to new and existing IT/OT projects. All suppliers who work with us must also guarantee firmly defined safety requirements. This applies to collaboration with major cloud providers, such as Microsoft Azure or Amazon Web Services, as well as small and medium-sized suppliers and all suppliers in the Digital Rail for Germany environment. Due to the high momentum around the topic and the rapidly advancing technological development, the information security division works closely with universities to promote research and next-generation training. National and international networking is another of the division’s core tasks in this respect, especially in European rail transport. Examples include cooperation with the Swiss Federal Railways SBB, major DAX companies and universities such as TU Berlin, the German Armed Forces Command and Staff College and the Mittweida University of Applied Sciences.