BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//pretalx//pretalx.com//denog17//talk//DUMD8G
BEGIN:VTIMEZONE
TZID:CET
BEGIN:STANDARD
DTSTART:20001029T040000
RRULE:FREQ=YEARLY;BYDAY=-1SU;BYMONTH=10
TZNAME:CET
TZOFFSETFROM:+0200
TZOFFSETTO:+0100
END:STANDARD
BEGIN:DAYLIGHT
DTSTART:20000326T030000
RRULE:FREQ=YEARLY;BYDAY=-1SU;BYMONTH=3
TZNAME:CEST
TZOFFSETFROM:+0100
TZOFFSETTO:+0200
END:DAYLIGHT
END:VTIMEZONE
BEGIN:VEVENT
UID:pretalx-denog17-DUMD8G@pretalx.com
DTSTART;TZID=CET:20251111T113000
DTEND;TZID=CET:20251111T120000
DESCRIPTION:With NIS2\, ISO 27001 and requirements of BNetzA raising the ba
 r for security and operational compliance\, many internet providers are as
 king the same question: *How do we meet these requirements without drownin
 g in bureaucracy?*\n\nThis talk bridges the gap between regulation and rea
 l-world implementation. Instead of focusing on theory or checklists\, we
 ’ll look at how to integrate compliance into the day-to-day work of runn
 ing a network—with minimal friction.\n\n**Topics include:**\n\n- Turning
  compliance into a continuous\, manageable process  \n- Using a Single Sou
 rce of Truth (SSoT) to manage documentation\, assets\, and controls  \n- T
 he “document once\, but right” principle: reducing duplication and inc
 onsistency  \n- Assigning and tracking responsibilities that actually get 
 done  \n- Lessons from real-life audits and what works in lean teams  \n- 
 Tooling\, automation\, and pragmatic templates to stay compliant while sta
 ying sane\n\nWe will demonstrate these concepts using open-source tools li
 ke:\n\n- **NetBox** for infrastructure inventory and network documentation
   \n- **Snipe-IT** for asset lifecycle management  \n- **Zammad** for task
  and ticket tracking  \n- **Eramba** for managing risk\, controls\, and po
 licy compliance  \n- **GitLab** for documentation\, version control\, and 
 approval workflows\n\nThese tools help create a practical compliance frame
 work that integrates seamlessly into daily operations and supports both au
 dit readiness and operational efficiency.\n\nThis session is tailored for 
 engineers\, DevOps\, and infrastructure managers at ISPs and hosting provi
 ders who want to build a compliant operation—without losing focus on upt
 ime\, performance\, and business continuity.\n\n**You’ll walk away with 
 concrete strategies and examples you can apply on Monday.**
DTSTAMP:20260617T171917Z
LOCATION:Saal B
SUMMARY:Compliance in Practice: Making NIS2 and ISO 27001 Work in Daily Ope
 rations - Mathias Handsche
URL:https://pretalx.com/denog17/talk/DUMD8G/
END:VEVENT
END:VCALENDAR