There is hardly any day without publishing news on digitization and industry 4.0 and their respective necessity. Risks and shortcomings of IT-security are as well current topics. The striking question on management level is, where is my company regarding IT-security? How can we get a guiding light into the complexity of all related terms? This article is an outcome of research activities at the University of Applied Sciences Middlehesse. It is meant to support management to identify the actual status of IT-security and identify possible shortfalls. Based on a maturity grade model IT-security is described by six aspects with five levels each. This will help to point out room for improvements
