Measures for Mitigation of Security Risks in digitally supported Construction Projects Part 2: Mitigation of Security Risks when using BIM Methods

Handling of information security in the digitalization of construction projects - part 2: mitigation of security risks by applying the BIM method The security risks identified in the first essay have consequences on many areas of the digitally supported project execution. Required personnel and technological resources have to be coordinated in line with a superordinated process. However, the current lack of awareness of many project stakeholders regarding the risk potentials for digitalized project information complicates the implementation of a holistic information security approach in BIM-based projects. Therefore, exemplary measures are introduced in this part of the essay, how the identified security risks areas can be mitigated. In accordance with the categorization into procedural, personnel and technological risk areas, recommended measures for each of the 16 identified security risks are introduced. A risk classification into five categories (A, B1, B2, B3, C) derived from this indicates the relevance, or priority respectively, of the risks in the development of an information security approach. On this basis, the approaches of ISO 19650-5 regarding its implementation on project level are introduced and evaluated. Concluding, the current state of development is summarized and further need for action is appointed.