The Digital Shield: IT Security and Cyber Resilience

Cyberattacks increasingly threaten operational continuity and the intellectual property of
businesses. The question is not whether you have been attacked, but rather how often attacks

have occurred without your knowledge. IT security and cyber resilience a
re essential to mitigate
these threats.
We assist in implementing legally mandated processes required by the NIS2
Directive and the Cyber Resilience Act
.

Protection Against Virtual Intruders

Unser Fokus liegt auf der Implementierung der geforderten Compliance und Governance, um sicherzustellen, dass Sie den regulatorischen Anforderungen gerecht werden. Wir stellen sicher, dass Sie den Compliance- Anforderungen der aktuellen IT-Sicherheitsregulierungen gerecht werden und Ihr Unternehmen optimal gegen Cyberbedrohungen geschützt ist.

Our Solutions for IT Security and Cyber Resilience

Implementation of the NIS2 Directive

Attention, CEOs: Your personal liability could be at stake! The NIS2 Directive sets strict security standards for critical infrastructures and specifically targets corporate management, who can be held personally liable in cases of noncompliance. We provide professional support in implementing effective risk management processes, realizing technical security measures, and complying with legal reporting obligations in security incidents. Specifically, we assist you in developing comprehensive security concepts for critical infrastructures and support you in continuous risk monitoring, liability preparation for executives, and process documentation.

Support for Software Development Projects

Ever wished you knew certain legal details in advance? No worries, our passion for IT is also reflected in our legal expertise. In software development, it is crucial to implement specific processes to ensure IT security early on. We assist you in assessing and managing risks associated with the use of opensource software components to ensure compliance with applicable IT security standards. We also assist you in creating a Software Bill of Materials (SBOM), which allows you to identify all components used in your software. This helps to detect and close security vulnerabilities early on.

Coordination of Technical Implementation

We realize technical IT security measures in close collaboration with you and, if necessary, your external partners. We take charge of coordinating the regulatory processes and governance requirements to ensure that the technical measures effectively protect against cyber attacks and enhance the resilience of your systems. Our service also includes advising on planning and implementing a robust IT infrastructure designed to minimize potential damages and strengthen system integrity.

Cyber Resilience Act Security for Digital Products

Not yet affected by NIS2? That doesn’t mean you can relax; the European Parliament has already taken the next legislative step. The new Cyber Resilience Act (CRA) sets clear requirements for manufacturers and developers of digital products: They must ensure their products are robust against cyber attacks. This poses particular challenges for opensource components, which require additional security processes to meet these standards. We support you in integrating these security standards during the development phase and throughout the entire product lifecycle. Our service includes advising on obtaining product safety certifications, preparing and conducting necessary tests and audits, as well as comprehensive risk analyses for your digital products. Additionally, we assist in implementing a stewardship program to monitor and maintain opensource components in your products, including implementing security patches and updates. We also support you in obtaining security certifications for opensource software in accordance with Article 25 CRA, a voluntary program to confirm security compliance.

IT Security Compliance and Governance

We focus on firmly establishing necessary IT security processes within your company. To this end, we develop compliance and governance structures that not only meet legal requirements but are also continuously monitored. We support you in introducing security policies that comply with the GDPR, the NIS2 Directive, and the Cyber Resilience Act, and implement the necessary monitoring mechanisms. Our team also brings extensive experience working with internal IT departments and external partners to tailor technical solutions to your company and effectively implement compliance requirements.

Insights and News

Die neue EU-Produkthaftungsrichtlinie 2024/2853

Was Verbraucher und Unternehmen jetzt wissen müssen Mit der Veröffentlichung der EU-Produkthaftungsrichtlinie 2024/2853 am 18. November 2024 und ihrem Inkrafttreten am 9. Dezember 2024 wurde ein...

The Team

Different people bring different perspectives to the table. Everyone benefits from this. We work together digitally and decentrally to enable the greatest possible flexibility.

Get to know us!