Crisam Logo
  • Solutions
    Solutions
    • Risk & Resilience
    • Compliance, Controls & Security
    • Audit & Assurance
    • Reporting
  • Industries
    Industries
    • Financial Services
    • Energy & Utilities
    • Healthcare & Pharmaceuticals
    • Industrial & Manufacturing
    • Public Sector & Infrastructure
    • Technology & Telecommunications
  • Platform
    Platform
    • Platform Capabilities
    • Oversight & Governance
    • Configurable workflows
    • Centralised GRC data model
    • Risk & control libraries
    • Evidence management
    • Action tracking
    • Automated reports
    • Board reporting
    • Roles & permissions
    • Audit trails
    • Multi-entity structures
  • Process
  • Customers
  • About CRISAM®
  • en-gb
    • de
    • en
Contact us
  • Sprache
    • de
    • en
  • Solutions
    • Risk & Resilience
    • Compliance, Controls & Security
    • Audit & Assurance
    • Reporting
  • Industries
    • Financial Services
    • Energy & Utilities
    • Healthcare & Pharmaceuticals
    • Industrial & Manufacturing
    • Public Sector & Infrastructure
    • Technology & Telecommunications
  • Platform
    • Platform Capabilities
      • Configurable workflows
      • Centralised GRC data model
      • Risk & control libraries
      • Evidence management
      • Action tracking
    • Oversight & Governance
      • Automated reports
      • Board reporting
      • Roles & permissions
      • Audit trails
      • Multi-entity structures
  • Process
  • Customers
  • About CRISAM®
  • Contact us

Success Story

Pfeiffer Vacuum strengthens Risk Management and Information Security with CRISAM®

In short

Pfeiffer Vacuum implemented the CRISAM® GRC platform to enhance its risk management processes and meet the requirements of the new IDW PS 340 audit standard. In addition, the company introduced the CRISAM® ISMS module to establish a structured information security management system and support compliance with increasing security and regulatory requirements.

About

Pfeiffer Vacuum GmbH

Pfeiffer Vacuum GmbH is a leading global manufacturer of vacuum solutions for industry, research and development. The company offers a broad portfolio of products and services that meet the highest standards of quality and performance. To ensure these standards, Pfeiffer Vacuum must also identify, assess and manage the risks in its own business operations.

The challenge

The requirements for enterprise risk management have increased significantly following the introduction of the new IDW PS 340 audit standard. The standard requires companies to establish and operate an appropriate and effective risk early warning system capable of identifying significant risks that could threaten the continued operation of the business.

At the same time, increasing customer expectations, growing cyber threats and regulatory requirements created the need for a structured approach to information security management.

The solution

To address these requirements, Pfeiffer Vacuum implemented the CRISAM® GRC platform developed by CALPANA.

The platform supports the company in systematically recording, analysing and managing risks throughout the organisation. It combines qualitative and quantitative risk assessment methods and enables transparent reporting through reports and dashboards.

In addition, Pfeiffer Vacuum implemented the CRISAM® ISMS module to establish a structured Information Security Management System (ISMS). The ISMS supports the protection of the confidentiality, integrity and availability of information through both technical and organisational measures.

Implementing the Information Security Management System

To establish its ISMS, Pfeiffer Vacuum followed a structured implementation approach.

The project included:

  • Reviewing existing security measures
  • Performing a gap analysis
  • Conducting a risk analysis
  • Developing a security strategy and objectives
  • Creating and implementing an action plan
  • Defining security policies and processes
  • Training employees
  • Introducing security technologies
  • Performing audits
  • Continuously monitoring and reviewing the ISMS

The result

By implementing CRISAM®, Pfeiffer Vacuum:

  • adapted its risk early warning system to the requirements of IDW PS 340,
  • increased audit security,
  • strengthened its risk culture,
  • established a process for continuous improvement of risk management,
  • increased efficiency by avoiding redundant processes and leveraging synergies.

The implementation of the CRISAM® ISMS module also enabled the company to establish an Information Security Management System that supports its business requirements for information security.

Why Information Security mattered

Implementing an ISMS helped Pfeiffer Vacuum address several business requirements.

The company needed to:

  • meet increasing customer and partner expectations regarding information security,
  • address growing cyber threats that could affect business continuity,
  • comply with applicable legal and regulatory requirements, including the General Data Protection Regulation (GDPR).

Conclusion

The project demonstrates how Pfeiffer Vacuum implemented CRISAM® GRC to support its risk management processes in line with IDW PS 340 and introduced the CRISAM® ISMS module to establish a structured Information Security Management System.

Pfeiffer Vacuum Bannerbild

Take the next step in risk management

Would you also like to combine both management disciplines (risk management & ISMS) on one platform?

Talk to our CRISAM® experts Tim-Benjamin Bohmfalk and Andreas Schmitz (Managing Director CALPANA Deutschland GmbH) and book a free webinar on risk management or ISMS.

 

Book a free webinar

Book your non-binding demo appointment

Sales Team Gruppenbild Andreas und Tim
Gemeinsame Nutzung CRISAM

CRISAM GRC Limited

20 Red Lion Street

London

+44 20 4634 5000 andreas.schmitz@crisam.net

CALPANA business consulting GmbH

Blumauerstrasse 45-47

4020 Linz

+43 732 601 216-0 office@crisam.net

CRISAM GRC Limited

20 Red Lion Street

London

+44 20 4634 5000 andreas.schmitz@crisam.net

CALPANA business consulting GmbH

Blumauerstrasse 45-47

4020 Linz

+43 732 601 216-0 office@crisam.net
Solutions
  • Risk & Resilience
  • Compliance, Controls & Security
  • Audit & Assurance
  • Reporting
Industries
  • Financial Services
  • Energy & Utilities
  • Healthcare & Pharmaceuticals
  • Industrial & Manufacturing
  • Industrial & Manufacturing
  • Technology & Telecommunications
Company
  • About CRISAM®
Legal
  • Data Policy
  • Imprint

© 2026 CRISAM GRC Limited