2023
ISACA Germany Chapter working group „Information security“: Implementierungsleitfaden ISO/IEC 27001:2022. In dpunkt.verlag, 2023.
2021
Schmitz, C.; Schmid, M.; Harborth, D. and Pape, S.: Maturity Level Assessments of Information Security Controls: An Empirical Analysis of Practitioners‘ Assessment Capabilities. In Computers & Security, 2021.
ISACA Germany Chapter working group „Information security“: Bewertung der Leistung eines ISMS durch Schlüsselindikatoren. In dpunkt.verlag, 2021.
2020
Schmid, M.: Vergleichbare Informations-Kennzahlen innerhalb einer Branche. In: Sowa A. (eds) IT-Prüfung, Datenschutzaudit und Kennzahlen für die Sicherheit. Springer Vieweg, Wiesbaden, 2020.
2019
Schmid, M. and Pape, S.: Aggregating Corporate Information Security Maturity Levels of Different Assets. In Privacy and Identity Management. Data for Better Living: AI and Privacy 2019 (IFIPSC2019), 2019.
Schmid, M. and Pape, S.: A structured comparison of the corporate information security. In ICT Systems Security and Privacy Protection – 34th IFIP TC 11 International Conference, SEC 2019, Lisbon, Portugal, June 25-27, 2019, Proceedings, pages 223-237, 2019, Acceptance rate: 26 / 142 = 18.3%.
2016
ISACA Germany Chapter working group „Information security“: Implementierungsleitfaden ISO/IEC 27001:2013. In dpunkt.verlag, 2016.
2015
ISACA Germany Chapter working group „IT risk management“: Leitfaden zur Anwendung der ISO 31000 in der IT. In dpunkt.verlag, 2015.
2014
ISACA Germany Chapter working group „IT risk management“: Heartbleed – IT-Risikomanagement mit COBIT in der Praxis. In IT-Governance (Issue 20) dpunkt.verlag, 2015.