Cyber protection aaS

Support with the implementation of technical security measures, either for the duration of an implementation project or as ongoing support:

• Identification of important or critical topics
• Recommendations for preventive measures
• Improving technical safety
• Assistance with the budgetary planning of cyber security
• Knowledge building for technical cyber security
• Improvement and further development of the technical security infrastructure
• Help with the selection of systems and components
• Support in the follow-up of security incidents

Many companies, especially smaller ones, have problems handling the increasingly important topic of cyber security professionally. Internal security staff are difficult to find and expensive. Internal IT or external IT service providers either do not have the necessary knowledge or are not even contractually obliged to do so. The Cyber Coach offers support with these problems:

• Individualized knowledge transfer
• Avoiding the build-up of expensive internal resources
• Improved security and therefore reduced risk
• High cyber competence in problem situations
• Better decisions for the future

Monthly preparation of an audit report on the effectiveness of cyber security measures in the form of analyses based on international standards for e.g:

• Web applications
• Publicly visible attack surfaces from an attacker’s perspective
• Networks
• Laptops, servers – configurations and patch status
• Coverage of requirements from standards and regulatory requirements (ISO27001, NIS2, DORA, GDPR)
• Simulation of attacks & mapping of possible attacker behavior
• Company data on the darknet
• Individualized messages about new threats
• Comparison with standards and best practices

The Cyber Pass shows companies on a regular (e.g. monthly) basis whether the cyber protection measures taken are active and effective and whether critical new vulnerabilities have emerged between the test reports.

The Cyber Passport is also an excellent source to provide auditors and cyber insurers with evidence of compliance with the minimum obligations. The Cyber Passport also serves as proof that cyber security is taken seriously by management and that suitable measures have been implemented in the company.

Alerting in the event of a security incident based on ongoing real-time monitoring of the systems and applications used:

• Endpoints such as laptops
• Infrastructure such as firewalls
• Applications based on logs

It is vitally important for companies to recognize attacks on their corporate infrastructure early on and prevent damage.

• Critical cyber alarms are communicated immediately and centrally
• Non-critical cyber alarms are collected and displayed in the monthly report
• Correlation of cyber alarms: Events are intelligently linked and prioritized
• All cyber alarms come from a central, standardized source

Furthermore, an alarm function is now explicitly required by various standards and norms and therefore also serves as evidence for audits or as part of cyber insurance.

Planning and implementation of technical and organizational measures to prevent ransomware attacks:

• Data backup concept (backup/restore)
• Emergency plan
• Planning technical protection measures (e.g. endpoint protection, anti-malware strategy, active directory analyses)
• Awareness training
• Phishing campaign

A ransomware attack usually follows predictable patterns and, if successful, achieves a complete paralysis of the affected company.

It is therefore necessary to take coordinated technical and organizational measures to prevent it, but also to be optimally prepared for an emergency.

Without ransomware prevention, the probability of a successful attack and the amount of damage is significantly higher.