Quiz Entry - updated: 2026.07.14
What are the BSI Standards and what is the IT-Grundschutz-Kompendium?
The BSI Standards describe the methodology for IT baseline protection and cover ISMS, methodology, and risk analysis. The IT-Grundschutz-Kompendium provides the actual building blocks, threats, and implementation guidance.
* The four BSI Standards — ISMS, methodology, risk analysis, and BCM. *
BSI Standards:
| Standard | Topic |
|---|---|
| BSI 200-1 | Management Systems for Information Security (ISMS) |
| BSI 200-2 | IT-Grundschutz Methodology |
| BSI 200-3 | Risk Analysis based on IT-Grundschutz |
| BSI 100-4 | Emergency Management (Business Continuity) |
IT-Grundschutz-Kompendium:
- Contains building blocks (Bausteine), threats, and implementation guidance
- Organized into 8 domains with over 80 building blocks
- Replaced the old IT-Grundschutz catalogs (reduced from 4000+ pages to ~816)
- Divided into process building blocks (ISMS, ORP, CON, OPS, DER) and system building blocks (IND, APP, SYS, NET, INF)
Tip: Think of the BSI Standards as the "how-to manual" and the IT-Grundschutz-Kompendium as the "cookbook" with specific recipes for securing different types of systems and processes.
Go deeper:
BSI-Standards 200-1/200-2/200-3/200-4 (offiziell) — Die vier BSI-Standards (ISMS, Methodik, Risikoanalyse, BCM).
IT-Grundschutz-Kompendium online (BSI) — Durchsuchbare Online-Fassung aller Bausteine, Gefährdungen und Anforderungen.