Initial situation: Following a cyber incident, the processing of security questionnaires at the biotech company was inconsistent and inefficient. Partners and customers had differing requirements, which were difficult to coordinate and address.

Objective: To efficiently meet partner requirements, raise security standards, standardise processes and establish a clear communication strategy.

Result: A structured process model for security questionnaires was introduced. Clear guidelines, responsibilities and tools for semi-automated processing ensure significantly shorter turnaround times, improved quality and greater flexibility.

The strategic development of the process for responding to security questionnaires was driven forward in collaboration with the Information Security, Business Development and IT departments. First, existing processes were analysed, inconsistencies identified and uniform guidelines developed. A robust management system was then established, which both speeds up the processing of questionnaires and ensures compliance with security standards. Tools for automating questionnaires were evaluated and implemented to automate the processes in the long term. The result is a system that reliably meets partner requirements, shortens response times and strengthens information security.