IT security

SmartTECS Intelligently connected.
Efficiently controlled.

Consulting IT Security

Consultancy and implementation of relevant security standards such as IEC 62443, ISO/IEC 27001, NIS2 and specific requirements for KRITIS in accordance with the BSI Act

Advice on setting up an information security management system (ISMS) based on IT baseline protection for industrial environments

Optimisation of the security architecture of basic industrial infrastructures, for example through the Zero Trust model

Risk assessment for industrial control systems and applications, e.g. analysing and assessing communication security in ICS networks

Definition of security measures to protect critical functions in IT and OT systems from attacks on industrial production processes

Promotion of safety awareness and safety competence among employees in industrial automation through targeted training and awareness programmes

Conducting threat and risk analyses to identify and assess security risks in the architecture of industrial systems

IoT, OT & Product Security

Conducting threat analyses and defining risk treatment measures for IoT devices, ICS systems and industrial automation products

Consultancy on the implementation of security measures for operational technologies (OT) and industrial control systems (ICS)

Support in the implementation of safety measures for industrial production lines, including compliance with relevant standards such as IEC 62443

Advice on legal requirements and standards at national and international level to ensure the security and compliance of IoT, OT and ICS systems

Development and recommendation of preventive measures to strengthen the resilience of IoT, OT and ICS products against cyber threats

Support in managing IT and OT security incidents, including incident response and digital forensics, to quickly identify and remediate vulnerabilities

Assist with the implementation of ISO 27001 and the establishment and maintenance of an information security management system (ISMS) in industrial and IoT environments.

Security Testing

Security analyses of industrial control systems (ICS) to determine and validate the security level (SL) in accordance with IEC 62443

Security consulting and training for developers, operators and decision-makers in the field of industrial automation and ICS

Carrying out OSINT analyses to determine the current public attack surface in industrial networks

Scenario-based test procedures through realistic simulation of cyber attacks on industrial automation systems

Testing resistance to attacks on the availability of production systems using DoS simulation

Evaluate employee awareness through targeted phishing simulations in the industrial environment

Red teaming simulations to assess the resilience of the organisation and its measures in industrial automation systems

Penetration Testing

Carrying out penetration tests to identify security vulnerabilities in ICS systems, products and industrial automation environments

Penetration tests for the IT and OT infrastructure of production lines and plants to ensure the integrity and availability of the systems

Pentests for the infrastructure of industrial control systems and the communication interfaces between IT and OT systems

Performing security audits for industrial web applications and APIs to identify and secure potential vulnerabilities

Penetration tests for mobile and desktop applications in industrial environments to identify security vulnerabilities that could jeopardise sensitive data and processes

Security checks in industrial OT systems to identify and eliminate vulnerabilities in the OT infrastructure

Definition of specific measures and recommendations to eliminate identified vulnerabilities in IoT, OT and ICS products