DE EN

Information Security Consulting

Implementation and support of information security management systems
ex. ISO 27001, Medical Information Technology – Security Management in Health Care using ISO/IEC 27002, Bundesamt für Sicherheit in der Informationstechnologie (BSI) IT-Baseline Protection Catalogues, etc.

IT-Security Audits
ex. BSI IT-Baseline Protection Catalogues, ISO 27001, Medical Information Technology ― Security Management in Health Care using ISO/IEC 27002, Advanced Metering Infrastructure Security Requirements, etc.

Attack & Penetration Testing
ex. using the Open Source Security Testing Methodology Manual (OSSTMM), ÖNORM A7700, PTES, NIST 800-115, OWASP

OT Security Consulting

Implementation and support of OT security management systems
ex. IEC 62443 Industrial communication networks - Network and system security series of standards, Advanced Metering Infrastructure (AMI) Smart Metering UCAIUG AMI-SEC-ASAP, etc.

OT-Security Audits
ex. OT Security Architecture, OT Network Monitoring. OT Remote Access, Advanced Metering Infrastructure Security Requirements, etc.

Attack & Penetration Testing
ex. testing devices before they are selected for implementation (PLCs, Gateways, Switches, Firmware, etc.), test environments, selected testing during maintenance, etc.

IT-Audit Services

Internal Audit support for IT related elements
from IT Governance to technical security of networks, operating systems and mobile devices

Evaluation of IT Outsourcing Providers

  • compliance with contractual obligations
  • security of data
  • compliance with data protection and privacy regulations
  • evaluating risks related to outsourcing

IT-Due Diligence Buy-Side

We support in finding answers to questions needed to be answered such as

  • Does IT represent an obstacle or an advantage fort he purchase?
  • How well does IT currently support the business goals?
  • How well is IT equipped?
  • How can IT be integrated into your own IT?
  • Will there be a need for substantive investment in IT in the short and long term?
  • Is IT compliant with legal regulations in the country or with the parent company (ex. data privacy)?
  • Are there legal and financial risks due to non-compliance?
  • Which synergies are likely to be achieved?

Business Continuity and Disaster Recovery Consulting

Our service supports you in finding answers and solutions to questions like

  • Are we able to continue our business if IT fails?
  • Which measures need to be implemented in order to be able to recover from IT failure?
  • Which measures are economically feasible?
  • Which risks and chances arise out of the current approach versus alternative approaches for continuity and disaster recovery?

Client References

On demand we will put you in contact with our clients in order for you to be able to obtain direct feedback on our quality and performance of service.