Library Update: TISAX VDA ISA Version 5.0.4

The Alyne Library has recently been updated with a Control Set covering version 5.0.4 of the Information Security Assessment (ISA) issued by the Verband der Automobilindustrie (VDA). The ISA allows for self-assessments, audits and health checks in accordance with the Trusted Information Security Assessment Exchange (TISAX).

The Information Security aspects of ISA requirements are built on the standards ISO/IEC 27001/27002/27017 and allow you to determine the degree of maturity across your organisation. The second pillar, the Prototype Protection requirements, refers to vehicles, components and parts, which have not yet been disclosed to the public by the OEM. The objective is to establish an appropriate level of protection and to regularly review the effectiveness of implemented measures.

Lastly, Data Protection requirements cover the processing of personal data according to Art. 28 of the EU General Data Protection Regulation (EU GDPR). On a side note: an EU GDPR control set is available to Alyne customers as part of the Alyne Library, to build their own customised internal controls framework in compliance with EU privacy regulations.

Changes between TISAX 4.1.1 and TISAX 5.0.4

In its latest version, TISAX VDA ISA comes with an updated structure that serves user friendliness in terms of rearranging and referencing: The new structure of the VDA ISA catalogue offers a better representation of the individual controls with more generic measures that allows easier implementation of the controls. 

The new TISAX ISA VDA version 5.0.4 came to effect on October 1st, 2020.

Compared to TISAX 4.1.1 (with 449 controls available in Alyne), the new Alyne control set added over 100 new controls to cover the latest version.

In addition to the existing 1500+ controls available in the platform, the Alyne Library team have interpreted and mapped TISAX ISA VDA 5.0.4 requirements into a Control Set containing 568 controls that are easily actionable, specific and measurable. The new control set is a perfect starting point for customers to create their own customised VDA ISA related control frameworks and assessments.


Contact our sales team at to learn how Alyne can help your organisation, or schedule a meeting with an expert to experience Alyne's full capabilities.
Moiz Ahamed

Related Posts

Library Update: ACSC Essential Eight 2021

The Alyne Library has recently been updated with a Control Set covering the July 2021 version of the Essential Eight Maturity Model issued by the Australian Cyber Security Centre (ACSC). The standard allows self-assessments based on the highest maturity level provided within the Essential Eight Maturity Models.

Library Update: UK GDPR

The Alyne Library has recently been updated with a Control Set covering the United Kingdom General Data Protection Regulation (UK GDPR). It explains the general data protection regime that applies to most UK businesses and organisations, and covers the UK GDPR, tailored by the Data Protection Act 2018.

Library Update: KAIT

The Alyne Content Library has recently been updated with a Control Set covering KAIT (Kapitalverwaltungsaufsichtliche Anforderungen an die IT) – the German BaFin's supervisory requirements for IT in Fund and Asset Management, defined in the 11/2019 (WA) circular in the version as of October 1, 2019.