Managing trust has many aspects, from antivirus protection to data backup and data protection strategies, but only an approach that is more than the sum of its parts can ensure success. An overall system is needed to address the topic in terms of areas of risk, strategies and processes. A trust management strategy thus includes risk identification and assessment, preventive strategies and monitoring, as well as ongoing optimization of processes and measures.

The first lines of defense are information security management systems (ISMS) based on the international ISO/IEC 27001 standard, for example, or guidelines such as the basic IT security catalog published by the German agency for IT security (BSI). IT security that is defined and implemented according to independently verified standards brings the added communication benefits of independent certification. There are some variables, however. Depending on the company, different aspects might be given higher priority in the certification process and development of a trust management strategy. Privacy protection issues are particularly important for tax consultants and attorneys, for example; this theme should be addressed specifically in the certification process to establish trust in these fields.

Overall, a carefully crafted trust management strategy brings many economic advantages that more than make up for the expenditures. For one thing, it creates transparency. Companies gain a better overview of their processes, recognize weaknesses and friction losses due to incompatible systems or other causes, and create synergies in monitoring and administration. Systematically maintained systems also minimize breakdowns and help minimize damage in the event of an emergency. This also provides legal protection by preventing infractions of civil or criminal law and, in the worst case, defusing accusations of gross negligence. Certification can also be a competitive advantage that sets a company apart from its competitors.

At first glance, Managing Trust seems to be "only" about security, but in fact it involves much more. It means trust in technology and in companies – a success factor that can hardly be assigned a monetary value.