Certification for High-Level IT Security at Klinikum Chemnitz


In August 2007, the Klinikum Chemnitz gGmbH was accredited by the Federal Office for Information Security (BSI) for IT security in accordance with ISO 27001. The organization s IT network was evaluated and included a data processing centre with servers and storage technology, the entire network with more than 1,500 computers as well as a large number of medical information systems, patient databases, digital image archives, and other software applications. In particular, the work of the MidGerman Health GmbH Medizininformatik (MGH) was audited. MGH, a majority holding of the Klinikum Chemnitz gGmbH, is responsible for the complete maintenance, support and further development of the organization s IT systems.

Viruses, malware, internet and email applications, program errors or safety gaps as well as targeted hacker attacks, with a the background ranging from youthful recklessness to organized crime, are a day-to-day challenge to the security and reliability of large IT systems. IT security requires enormous efforts, but only a rigorous evaluation and certification process carried out by an independent surveyor can set the benchmarks. "... and we have complied with those high standards", says Prof. Dr.-Ing. Olaf Schlimpert, Managing Director of MGH.

The objective is to achieve an even higher level of certification in the future. With this successful certification, MGH has also entered unknown territory. According to a statement by the auditors, the Klinikum Chemnitz gGmbH is the first hospital nationwide to be awarded this attestation, following an intensive examination by the BSI.