Publications

2023

ISACA Germany Chapter working group „Information security“: Implementierungsleitfaden ISO/IEC 27001:2022. In dpunkt.verlag, 2023.

2021

Schmitz, C.; Schmid, M.; Harborth, D. and Pape, S.: Maturity Level Assessments of Information Security Controls: An Empirical Analysis of Practitioners‘ Assessment Capabilities. In Computers & Security, 2021.

ISACA Germany Chapter working group „Information security“: Bewertung der Leistung eines ISMS durch Schlüsselindikatoren. In dpunkt.verlag, 2021.

2020

Schmid, M.Vergleichbare Informations-Kennzahlen innerhalb einer Branche. In: Sowa A. (eds) IT-Prüfung, Datenschutzaudit und Kennzahlen für die Sicherheit. Springer Vieweg, Wiesbaden, 2020.

2019

Schmid, M. and Pape, S.: Aggregating Corporate Information Security Maturity Levels of Different Assets. In Privacy and Identity Management. Data for Better Living: AI and Privacy 2019 (IFIPSC2019), 2019.

Schmid, M. and Pape, S.: A structured comparison of the corporate information security. In ICT Systems Security and Privacy Protection – 34th IFIP TC 11 International Conference, SEC 2019, Lisbon, Portugal, June 25-27, 2019, Proceedings, pages 223-237, 2019, Acceptance rate: 26 / 142 = 18.3%.

2016

ISACA Germany Chapter working group „Information security“: Implementierungsleitfaden ISO/IEC 27001:2013. In dpunkt.verlag, 2016.

2015

ISACA Germany Chapter working group „IT risk management“: Leitfaden zur Anwendung der ISO 31000 in der IT. In dpunkt.verlag, 2015.

2014

ISACA Germany Chapter working group „IT risk management“: Heartbleed – IT-Risikomanagement mit COBIT in der Praxis. In IT-Governance (Issue 20) dpunkt.verlag, 2015.