Home

Basisschutz

Basisschutz is the baseline level of information security measures defined within the IT-Grundschutz framework of the German Federal Office for Information Security (BSI). It provides a standardized set of protective measures intended to be applicable to most typical IT environments and aims to safeguard confidentiality, integrity, availability and authenticity of information and services.

The Basisschutz consists of a catalog of security measures organized across domains such as organizational, personnel,

Application and impact: The Basisschutz is widely used in German public administration and is frequently adopted

Implementation and evolution: The Basisschutz is described in the IT-Grundschutz Compendium published by BSI and is

physical
and
technical
security.
These
measures
are
selected
and
implemented
based
on
an
organization’s
protection
needs
(Schutzbedarf)
and
risk
assessment.
Basisschutz
forms
the
foundational
layer
of
the
IT-Grundschutz
approach;
if
an
environment
has
higher
risk,
additional
measures
from
higher
protection
levels
may
be
required.
by
private
organizations
as
a
practical,
cost-effective
starting
point
for
information
security.
It
supports
regulatory
compliance,
provides
a
structured
approach
to
security
management,
and
facilitates
alignment
with
or
certification
against
broader
standards.
maintained
to
reflect
evolving
threats
and
technologies.
Organizations
typically
conduct
a
baseline
assessment,
implement
the
standard
measures,
and
tailor
them
to
their
specific
environment,
potentially
expanding
to
higher
protection
levels
as
needed.