Joh. Meier Werkzeugbau GmbH, or JMW for short, specializes in the production of tools for series production in the automotive industry. The introduction of the information security solution from DHC Business Solutions is intended to implement the information protection security requirements in the automotive industry in accordance with ISO 2700x as per VDA 3.0.
VDA 3.0 certification is crucial for a competitive advantage
“Quality for your success” – this is the mission statement of JMW, a major Tier 3 supplier in the automotive OEM (Original Equipment Manufacturer) supply pyramid. In doing so, JMW distinguishes itself with a true high-tech range of services – from the initial sample to pilot or small series production to the series part – in a precisely coordinated production network. As a toolmaker, JMW is a specialist for blanking, progressive and transfer tools, for press hardening tools and hot forming tools as well as for prototype tools of all kinds.
With such specialization, high-tech orientation and networking, it is not surprising that JMW attaches great importance to the topic of information security. In addition, there are high regulatory requirements that apply specifically to automotive suppliers: For contracts, they must prove at regular intervals that they meet the high information security requirements of their customers. The basis for this is certification in accordance with VDA 3.0 and the so-called TISAX exchange mechanism (Trusted Information Security Assessment Exchange), which was created at the beginning of 2017 and expands the VDA ISA catalog of requirements. TISAX serves as a cross-company recognition of information security assessments in the automotive industry based on a common testing and exchange mechanism under the sponsorship of the ENX Association.
Against this background – and prompted by an OEM – Mats Conrad was commissioned by the JMW management as IT security officer with VDA 3.0 certification and thus the implementation of necessary measures. “Successful TISAX assessment is vital for JMW”, says Conrad, “because competition in the automotive supply industry is fierce and for OEMs the TISAX listing is a decisive selection criterion of business partners.”
Therefore, in addition to data and prototype protection, information security in the automotive supply industry requires some attention. This is also reflected in the current VDA questionnaire “Information Security Assessment”. There, a whole range of additional controls are introduced for auditing the ISMS according to ISO 27001 (or ISO 27002:2013). Conrad continues: “More than 60% of the aspects relevant to certification focus on information security issues. The introduction of a so-called Information Security Management System (ISMS) is therefore given the greatest priority at JMW”.
The DHC ISMS – Smart from implementation to operation
Medium-sized companies like JMW are also subject to the same governance and compliance regulations that apply to international corporations. What is often lacking in SMEs, however, are specialized staff departments or dedicated resources for urgently implemented digitization projects. Projects lasting months, such as for the introduction of an ISMS in parallel with ongoing daily business are therefore not realistic. And that’s exactly what DHC has responded to, which Conrad confirms: “When deciding to introduce an ISMS, the decisive factor for us was DHC’s coherent overall package, namely rapid project implementation and short time to market, combined with optimum connectivity of the ISMS to upstream and downstream management systems. In this way, we were able to closely integrate information security and quality management in accordance with ISO 9001:2015, while at the same time taking the VDA guidelines into account.” Conrad continues: “If the modern design and the user experience (UX) are also pleasing, there is nothing left to be desired with an excellent price/performance ratio. In particular, DHC VISION’s dashboards with real-time data on assets, risks and potential damages, status of policies and key KPIs are extremely valuable. This also firmly convinced the management. In short: We made the right decision”, concludes Conrad.
JMW’s digitization strategy as a whole is designed with the future in mind. It involves greater digital networking or communication between machines, plants or products. It is also focused on digitizing non-value-added management processes and adapting them to digital opportunities. The VDA 3.0 certification marks the start of more digitization in the company; in the coming months, further processes such as quality, complaints and CAPA management will be successively digitized.
Dr. Wolfgang Kraemer, Managing Director of DHC Business Solutions, is looking forward to the long-term collaboration with JMW to implement the company’s digitization strategy: “Our business model of relieving high-growth, high-tech companies of operational IT duties and supporting them in their Quality 4.0 strategy helped us to achieve significant growth this year”, according to Kraemer.
About JMW
Whether exhaust manifolds, roof frames, seat backs, cushion shells, inner door shells, door reinforcement systems, A- and B-pillars or reinforcement parts for axles, the production of all these vehicle parts requires the most modern and high-quality tools for sheet metal forming, which are manufactured in East Westphalia by the company JMW GmbH. JMW offers comprehensive know-how in forming technology, for productive and economically convincing solutions in toolmaking. Speed, precision, reliability and quality are appreciated by our customers all over the world. For more information about JMW, please visit: www.jmw-werkzeugbau.de.
