
TISAX is the information security standard for the automotive industry, required by major OEMs before sharing sensitive data with suppliers. Achieving TISAX certification demonstrates your readiness to handle proprietary vehicle data, prototypes, and design information securely.
Navigating the VDA ISA questionnaire with its maturity-level scoring system that goes beyond simple pass/fail assessment.
Implementing physical and logical controls for protecting vehicle prototypes, pre-production models, and design data from unauthorized disclosure.
Different OEMs may have varying TISAX scope requirements — some require Assessment Level 2, others Level 3 with on-site visits.
TISAX is based on ISO 27001 but adds automotive-specific requirements — companies must understand both the base standard and the extensions.
Inadequate physical controls for areas where automotive prototypes, test vehicles, or pre-production components are handled.
Lack of formal data classification scheme for automotive data types (prototype data, series production data, development data).
Missing or incomplete processes for evaluating sub-supplier information security practices and extending TISAX requirements.
Including preparation, tooling, and assessment fees
Depending on current maturity and scope
TISAX costs depend on the required assessment level and scope. Assessment Level 2 (plausibility check) is less expensive than Level 3 (on-site assessment). Companies with existing ISO 27001 certification can leverage much of their existing ISMS, significantly reducing implementation costs. The assessment itself typically costs $10K-$30K.

Illumen specializes in helping automotive suppliers companies achieve TISAX compliance — from initial assessment through certification.
Know exactly where you stand against requirements
A clear, prioritized path to certification
Hands-on support from seasoned compliance advisors
Common questions about TISAX compliance in the automotive suppliers industry.