References

Referenzen Icon

Our references

Experience that pays off

Expertise is particularly expressed through experience in solving unique and complex tasks. The experience of a service company can be measured by their references. The following pages will show you an excerpt of our comprehensive reference- and project list.

References Industrial IT-Security

  • Development of various information security management systems (ISMS) in accordance with the IT security catalogue (electricity and gas network operators) for national, regional and local distribution network operators
  • OSSTMM-Audit - Process control networks, remote maintenance accesses at an energy supplier
  • OSSTMM-Audit - Transition CommercialNet to process control network and backbone process control technology at an energy supplier
  • OSSTMM-Audit - Telecontrol system at a regional energy supplier
  • OSSTMM-Audit - Data Center Zone at a conglomerate
  • Development of an information security management system (ISMS) with generic security guidelines for a production data network at an energy supply company
  • Development of an emergency management system for an international energy supplier
  • Determination of the information security requirements of mining law for an internationally active energy supplier
  • Review of the data center according to DIN and security recommendations of the Federal Office for Information Security (BSI) at an international energy provider
  • Inspection of the twelve process control centers within the company locations for physical weak points, alarm and monitoring systems, fire protection, fire alarm systems at a gas supplier
  • Checking company locations and their data centers for access protection and alarm systems at a meat producer
  • Migration of a central control station within the process control technology into the entire Active Directory structure
  • Integration of a control system within critical infrastructures in an overall AD structure in a production data network
  • Process support in patch management for process-related units within critical infrastructures of an energy producer/supplier operating throughout Europe
  • Support of technical backup processes in critical infrastructures of process-related units of a European energy producer/supplier active throughout Europe
  • Process support of patch management for domain controllers in critical infrastructures of an energy producer/supplier operating throughout Europe as usual
  • Establishment of an open source anti-spam solution for an industrial group
  • Definition of ITIL 3-based and CobiT 4.0 processes for service management in critical infrastructures of a nationwide energy producer/supplier as well as standards-based security zoning in process control networks of critical infrastructures and conception of central services (AD, inventory, backup, virus protection, patch management)
  • Implementation and hardening of a LAMP server at an energy supplier operating throughout Germany
  • Integration of several domains into an overall AD structure of an internationally active energy producer/supplier
  • Optimization of a recovery solution within the process control networks of an international energy producer/supplier
  • Conception and implementation of virus protection on process control systems of an international process control system manufacturer for production readiness
  • Fine design of secure networks (segmentation) and central services for several locations with remote technology as well as fine design of technical rooms in several power plants at a regional energy supplier
  • Optimization of virus protection in critical infrastructures of a pan-European energy producer/supplier
  • Implement and configure highly secure virtualization to deploy applications to a utility's critical infrastructure
  • Implementation of a monitoring solution for critical infrastructures of an energy supplier
  • Optimization of a patch management structure for an international energy producer/supplier
  • Secure removal of Active Directory substructures within an overall structure of a pan-European energy producer/supplier

References Process control systems

  • Protection of Industrial Ethernet / Scada Network at an international energy supplier
  • Protection of fieldbus systems / water supply for an international energy supplier
  • Securing Scada systems / water supply for an internationally active energy supplier
  • Conceptual design and integration of a patch management solution in the Scada environment for an international energy supplier
  • Conception and integration of an Active Directory overall structure according to KRITIS specifications, with more than 15 domains at more than six locations at an internationally active energy supplier
  • Conception and integration of a DNS structure according to KRITIS specifications with more than 55 DNS servers at an international energy provider
  • Introduction of an administration concept for an overall structure with 15 domains at an energy supply company
  • Conceptual design and integration of a distributed patch management solution for an international energy supplier
  • Implementation of a network restructuring based on open source at a national meat producer
  • Conceptual design and integration of a client firewall solution for the backbone production area at an international energy provider
  • DMZ safety test at a national meat processor
  • Security test / penetration test - IT automation systems for an international energy supplier
  • OSSTMM-Audit - DMZ, process control network at a meat producer
  • OSSTMM-Audit - Process control networks, remote maintenance accesses at an energy supplier
  • OSSTMM-Audit - Transition CommercialNet to process control network and backbone process control technology at an energy supplier
  • OSSTMM-Audit - Telecontrol system at a regional energy supplier
  • OSSTMM-Audit - Data Center Zone at a conglomerate
  • Development of an IT security management system (ISMS) with generic security guidelines for a production data network at an energy supply company
  • Development of an emergency management system for an international energy supplier
  • Determination of the information security requirements of mining law for an internationally active energy supplier
  • Review of the data center according to DIN and security recommendations of the Federal Office for Information Security (BSI) at an international energy provider
  • Inspection of the twelve process control centers within the company locations for physical weak points, alarm and monitoring systems, fire protection, fire alarm systems at a gas supplier
  • Checking company locations and their data centers for access protection and alarm systems at a meat producer
  • Safety-related monitoring of domain controllers in process control networks of critical infrastructures at an energy producer/supplier operating throughout Europe
  • Safety-related monitoring of domain controllers in process control networks of critical infrastructures at an energy producer/supplier operating throughout Europe
  • Migration of a central control station within the process control technology into the entire Active Directory structure
  • Integration of a control system within critical infrastructures in an overall AD structure in a production data network
  • Process support in patch management for process-related units within critical infrastructures of an energy producer/supplier operating throughout Europe
  • Support of technical backup processes in critical infrastructures of process-related units of a European energy producer/supplier active throughout Europe
  • Process support of patch management for domain controllers in critical infrastructures of an energy producer/supplier operating throughout Europe as usual
  • Establishment of an open source anti-spam solution for an industrial group
  • Definition of ITIL 3-based and CobiT 4.0 processes for service management in critical infrastructures of a nationwide energy producer/supplier as well as standards-based security zoning in process control networks of critical infrastructures and conception of central services (AD, inventory, backup, virus protection, patch management). Design of several data centers and technical rooms for central services and remote computer technology in process control networks of critical infrastructures
  • Implementation and hardening of a LAMP server at an energy supplier operating throughout Germany
  • Integration of several domains into an overall AD structure of an internationally active energy producer/supplier
  • Optimization of a recovery solution within the process control networks of an international energy producer/supplier
  • Fine design of secure networks (segmentation) and central services for several locations with remote technology as well as fine design of technical rooms in several power plants at a regional energy supplier
  • Optimization of virus protection in critical infrastructures of a pan-European energy producer/supplier
  • Implement and configure highly secure virtualization to deploy applications to a utility's critical infrastructure
  • Implementation of a monitoring solution for critical infrastructures of an energy supplier
  • Optimization of a patch management structure for an international energy producer/supplier
  • Secure removal of Active Directory substructures within an overall structure of a pan-European energy producer/supplier

References Security Testing

OSSTMM-Security audits

  • OSSTMM-Audit - Technical gap analyses regarding information security management systems (ISMS) Implementation according to the IT security catalogue (electricity and gas network operators) for national, regional and local distribution network operators
  • OSSTMM-Audit - DMZ at a national meat processor
  • OSSTMM-Audit - BlackBox, DMZ at a steel producer
  • OSSTMM-Audit - BlackBox, DMZ at a manufacturer of engineering plastics
  • OSSTMM-Audit - DMZ, WLAN infrastructure of a mail order company operating throughout Europe
  • OSSTMM-Audit - Web server farm at a mail order company
  • OSSTMM-Audit - DMZ at a supplier for automotive parts
  • OSSTMM-Audit - IT automation systems for an international energy supplier
  • OSSTMM-Audit - DMZ at an energy supplier
  • OSSTMM-Audit - DMZ, WLAN infrastructure at an energy provider
  • OSSTMM audit - VoIP implementation at a software manufacturer
  • OSSTMM-Audit - PBX system at a German investment company
  • OSSTMM-Audit - VoIP implementation at a service provider for construction and real estate
  • OSSTMM-Audit - internal server farm at a bathroom supplier
  • OSSTMM audit - VoIP implementation at an energy provider
  • OSSTMM audit - DMZ, VoIP implementation at a manufacturer's satellite products
  • OSSTMM-Audit - DMZ at a meat processor
  • OSSTMM-Audit - DMZ at a pharmaceutical wholesaler
  • OSSTMM-Audit - DMZ at an energy supplier
  • OSSTMM audit - internal audit, VoIP implementation at an energy provider
  • OSSTMM-Audit - DMZ at a metal technology company
  • OSSTMM-Audit - DMZ & IDS at a manufacturer of frozen meals
  • OSSTMM audit - internal audit, VoIP implementation at a software manufacturer
  • OSSTMM-Audit - DMZ at a German municipal utility
  • OSSTMM-Audit - E-Commerce DMZ at a German Landesbank
  • OSSTMM-Audit - Zones Internet-Connection, VPN-Connection, WAN-Connection at a food manufacturer
  • OSSTMM-Audit - Vector attack via public networks (DMZ) in a clinic network
  • OSSTMM-Audit - DMZ, process control network at a meat producer
  • OSSTMM-Audit - mission-critical application server for a global automotive group
  • OSSTMM-Audit - Vector attack from public networks at an industrial company
  • OSSTMM audit - Web application ASP at a national application service provider and software manufacturer
  • OSSTMM-Audit - DMZ, Remote Access Server at a tool industry company
  • OSSTMM-Audit - Process control networks, remote maintenance accesses at an energy supplier
  • OSSTMM audit - DMZ, "internal offender" scenarios at a software manufacturer
  • OSSTMM audit - application server at an insurance company
  • OSSTMM-Audit - Unix server world at a data center
  • OSSTMM audit - VoIP implementation at a car manufacturer
  • OSSTMM-Audit - Transition CommercialNet to process control network and backbone process control technology at an energy supplier
  • OSSTMM-Audit - Network architecture, SAN at a company of the food industry
  • OSSTMM-Audit - Trading application for a financial service provider
  • OSSTMM-Audit - SAN Architecture, Discovery at a regional energy provider
  • OSSTMM-Audit - DMZ, Backbone at an international law firm
  • OSSTMM-Audit - Backbone - Vector offender at a reinsurance company
  • OSSTMM-Audit - Trading platforms at an investment banking company
  • OSSTMM Audit - IPSec connections (WAN zone) at an investment banking company
  • OSSTMM audit - at a trading company
  • OSSTMM audit - at a merchandising and trading company
  • OSSTMM-Audit - Telecontrol system at a regional energy supplier
  • OSSTMM-Audit - Telecommunication systems for energy suppliers at an internationally active telecommunications company
  • OSSTMM-Audit - Backbone and Perimeter London at an international law firm
  • OSSTMM-Audit - E-commerce architecture of a health insurance company
  • OSSTMM audit - VoIP implementation of a health insurance company
  • OSSTMM-Audit - SAN infrastructure of a health insurance company
  • OSSTMM Audit - Customer Booking Process at an Aviation Company
  • OSSTMM-Audit - Application server and application middleware for a chemical industry company
  • OSSTMM-Audit - SAN infrastructure at a health insurance data center
  • OSSTMM-Audit - Data Center Zone at a conglomerate
  • OSSTMM audit - SOX processes at a petrochemical industrial company
  • OSSTMM-Audit - Preparation of an ISO27001 certification at an automotive company
  • OSSTMM-Audit - Web server farm at a travel management company
  • OSSTMM-Audit - Commercial DMZ at a pharmaceutical company
  • OSSTMM audit - DMZ and WLAN implementation at a pharmaceutical company
  • OSSTMM-Audit - Backbone at a pharmaceutical company
  • OSSTMM audit - dedicated business processes at a trading company
  • OSSTMM audit - WAN zone at a mechanical engineering company
  • OSSTMM audit with safety assessment of a PBX/VoIP installation within critical infrastructures of an energy producer/supplier operating throughout Europe
  • Penetration test / OSSTMM audit of a WAN infrastructure of a medium-sized industrial company
  • Technical OSSTMM security audit of a large leasing company with banking license
  • Penetration test according to OSSTMM with safety-related design for an internationally active mechanical engineering group
  • OSSTMM-compliant technical security audit of an armaments group
  • Technical OSSTMM audit and web application testing according to OWASP for an energy supplier
  • OSSTMM-compliant international penetration test for an international industrial group
  • OSSTMM-compliant security test for a large retail group
  • OSSTMM-compliant technical security audit of a card management system (access control) at a large German publishing house
  • OSSTMM-compliant safety test of applications of a nationwide, state-wide sovereign project
  • OSSTMM-compliant technical security audit of an energy supplier in Austria
  • OSSTMM-compliant penetration test as part of a PCI DS audit of a global distribution company
  • OSSTMM-compliant penetration test of a large German international publishing house
  • OSSTMM-compliant technical DMZ audit of an encryption solution of an international law/notary firm
  • Technical OSSTMM security audit with security metric assessment of service access in critical infrastructures of a European energy producer/supplier with permanent security level monitoring assessment
  • Technical OSSTMM security audit with security metric assessment of service access in critical infrastructures of a European energy producer/supplier with constant security level monitoring assessment for site-to-site VPN environments
  • OSSTMM-compliant LAN penetration test of a German retail group
  • OSSTMM-compliant penetration test of a DMZ environment of a large retail group
  • Technical OSSTMM security audit of the process IT of an energy supplier
  • OSSTMM audit as part of a PCI DSS for an international distribution/logistics company
  • OSSTMM-compliant technical security audit of online publishing house presences of a large German publishing house
  • OSSTMM-compliant technical security audit as part of a PCI DSS compliance audit for a global financial institution focusing on credit card data processing
  • Internal network penetration test according to OSSTMM in an international environment for a financial company with focus on credit card data processing

Web application/web page tests according to OSSTMM and OWASP

  • Security test / penetration test - E-commerce web applications at a German state bank
  • Security test / penetration test - Web applications for a pharmaceutical wholesaler
  • Security test / penetration test - Web applications for a food trade
  • Security test / penetration test - Web applications, databases, zOS, PBX at a mail order company
  • Web application test - Extranet at a meat producer
  • Web application test - processing software at an insurance company
  • Web application testing - Communication software at an application service provider
  • OSSTMM-Audit - WebApplications of a health insurance company
  • Web application test - Energy data portal / metering system of a subsidiary of an energy supply company
  • OSSTMM-compliant security check of a financial reporting application of a financial service provider with a banking license
  • OSSTMM-compliant security check of the Active Directory infrastructure of a financial services provider with a banking license
  • OSSTMM-/OWASP-Securitycheck of a homepage with Flash technology for a financial service provider with banking license
  • OSSTMM-/OWASP-compliant security check of web applications
  • OSSTMM-/OWASP security test of web applications of a security service provider
  • Web application testing according to OWASP for an energy supplier
  • Technical security audit / penetration tests of extranet web applications of a large German retail group
  • OSSTMM-/OWASP-compliant security analysis of foreign publishing websites of an international publishing group
  • Technical security audits of the online infrastructure of a retail group
  • Technical OSSTMM security audit of the process IT of an energy supplier

References Governance, Risk & Compliance (GRC)

  • Development of various information security management systems (ISMS) in accordance with the IT security catalogue (electricity and gas network operators) for national, regional and local distribution network operators
  • Definition of ITIL 3-based and CobiT 4.0 processes for service management in critical infrastructures of a nationwide energy producer/supplier.
  • OSSTMM-Audit - Preparation of an ISO27001 certification at an automotive company
  • Preparation for PCI-DSS compliance (certification, 6 million transactions) at a trading company
  • Preparation for PCI-DSS compliance (certification, 6 million transactions) at a travel management company
  • OSSTMM audit - dedicated business processes at a trading company
  • Development of an information security management system (ISMS) with generic security guidelines for a production data network at an energy supply company
  • Introductory study for a Role Bases Access Control System (RBAC) and subsequent identity management system for a power supply company
  • Creation of a security guideline in accordance with the basic protection catalogue "Active Directory module and databases at an energy supply company
  • Preparation of the security guideline for an internationally active energy supplier
  • Coaching of the security team at one of the leading insurance and financial services companies
  • Updating and extending the security policy of an international energy supplier
  • Development of an emergency management system for an international energy supplier
  • Integration of an information security management system into an existing IT service management system at a medium-sized financial service provider
  • Business Impact Analysis (BIA) for an international media and communications service provider
  • Analysis of the powers of US border control authorities to seize data carriers containing encrypted data and the resulting risk situation; preparation of proposals to minimize the resulting risks for an internationally active energy supplier
  • Determination of the information security requirements of mining law for an internationally active energy supplier
  • Determination of regulatory requirements for IT-supported media and communication services and verification of their compliance with an internationally active media and communication service provider
  • Assumption of the mandate of data protection officer at a medium-sized management consultancy
  • Determination of regulatory, in particular financial services regulatory, requirements for web-based financial service platforms for a medium-sized financial service provider
  • Development of a secure BaFin-compliant trading platform with a money, securities, promissory note and derivatives broker
  • Consulting support in setting up a Security Operations Center (SOC) for a health insurance IT service provider

References Security Architectures

  • Introductory study for a Role Bases Access Control System (RBAC) and subsequent identity management system for a power supply company
  • Creation of a security guideline in accordance with the basic protection catalogue "Active Directory module and databases at an energy supply company
  • Preparation of the security guideline for an internationally active energy supplier
  • Coaching of the security team at one of the leading insurance and financial services companies
  • Updating and extending the security policy of an international energy supplier
  • Development of an emergency management system for an international energy supplier
  • Integration of an information security management system into an existing IT service management system at a medium-sized financial service provider
  • Business Impact Analysis (BIA) for an international media and communications service provider
  • Analysis of the powers of US border protection authorities to seize data carriers with encrypted data and the resulting risk situation; preparation of proposals to minimize the resulting risks for an internationally active energy supplier
  • Determination of the information security requirements of mining law for an internationally active energy supplier
  • Determination of regulatory requirements for IT-supported media and communication services and verification of their compliance with an internationally active media and communication service provider
  • Development of a secure BaFin-compliant trading platform with a money, securities, promissory note and derivatives broker
  • Consulting support in setting up a Security Operations Center (SOC) for a health insurance IT service provider
  • Optimization support for a SQUID proxy server (web cashing) at a regional gas supplier
  • Support data backup and recovery as well as restore for regional gas supplier
  • Monitoring support through protocol optimization, observation and monitoring of critical systems at regional gas suppliers,
  • Support of malware protection and prevention of a regional gas supplier
  • Implementation of WSUS downstream server structure for regional energy suppliers
  • Configuration of firewalls in the plant bus of critical infrastructures of a European energy supplier
  • Safety-related monitoring of domain controllers in process control networks of critical infrastructures at an energy producer/supplier operating throughout Europe
  • Process support in patch management for process-related units within critical infrastructures of an energy producer/supplier operating throughout Europe
  • Support of technical backup processes in critical infrastructures of process-related units of a European energy producer/supplier active throughout Europe
  • Process support of patch management for domain controllers in critical infrastructures of an energy producer/supplier operating throughout Europe as usual
  • Establishment of an open source anti-spam solution for an industrial group
  • Establishment of an SSL VPN at a regional gas supplier
  • Standard-based security zoning in process control networks of critical infrastructures and conception of central security services (backup, virus protection, patch management)
  • Implementation and hardening of a LAMP server at an energy supplier operating throughout Germany
  • Establishment of a site-to-site VPN tunnel for an international industrial group
  • Process-related support of technical patch management for process control networks in critical infrastructures of an internationally active energy producer/supplier
  • Optimization of a recovery solution within the process control networks of an international energy producer/supplier
  • Conception and implementation of virus protection on process control systems of an international process control system manufacturer for production readiness
  • Implementation of a Public Key Infrastructure (PKI) at a regional energy supplier
  • Firewall redundancy at a gas supplier
  • Detailed design of secure networks (segmentation) and central services for several locations with remote technology at a regional energy supplier
  • Optimization system recovery solution for server farm of a regional gas supplier
  • Optimization of virus protection in critical infrastructures of a pan-European energy producer/supplier
  • Implementation of a monitoring solution for critical infrastructures of an energy supplier
  • Optimization of a patch management structure for an international energy producer/supplier
  • Firewall configuration as part of an IP restructuring of an international industrial group
  • Implementation of a solution for network access prevention/control at a regional gas supplier
  • Implementation and support for monitoring critical websites of a regional energy provider with Nagios
  • Encryption of emails within a web application architecture with an open source solution
  • Implementation of a multi-level PKI certification body

References Basis-/Infrastructure services

  • Protection of Industrial Ethernet / Scada Network at an international energy supplier
  • Protection of fieldbus systems / water supply for an international energy supplier
  • Securing Scada systems / water supply for an internationally active energy supplier
  • Conceptual design and integration of a patch management solution in the Scada environment for an international energy supplier
  • Conception and integration of an Active Directory overall structure according to KRITIS specifications, with more than 15 domains at more than six locations at an internationally active energy supplier
  • Conception and integration of a DNS structure according to KRITIS specifications with more than 55 DNS servers at an international energy provider
  • Introduction of hardening measures at an internationally active energy supplier
  • Introduction of hardening processes at an internationally active law firm
  • Migration concept Active Directory Migration at an international supplier for automotive parts
  • Active Directory conceptual design for a manufacturer of satellite products
  • AD operational support for a manufacturer of satellite products
  • Introduction of an administration concept for an overall structure with 15 domains at an energy supply company
  • Conceptual design and integration of a distributed patch management solution for an international energy supplier
  • Implementation/operational support Patch management for an international energy supplier
  • Implementation/operational support Patch management for an international energy supplier
  • Implementation/operational support Patch management at a national insurance company
  • Implementation/operational support patch management at an international law firm
  • Implementation/operational support patch management for a pharmaceutical company
  • Implementation/operational support Patch management for an international energy supplier
  • Implementation/operational support Patch management for an international energy supplier
  • Implementation/operational support Patch management for a national insurance company
  • Active Directory conceptual design for a manufacturer of satellite products
  • Conceptual design and integration of a highly available virtual infrastructure based on Citrix XenServer for an international energy provider
  • Conceptual design and integration of a highly available virtual infrastructure based on Citrix XenServer for an international energy provider
  • Conceptual design and integration of hardening measures on Citrix XenServer for an international energy provider
  • Conception and integration of hardening measures within the terminal server farms backbone of an international energy provider
  • Conceptual design and integration of a highly available SAN structure based on Equallogic hardware for an international energy provider
  • Conception and integration of a highly available SAN structure based on IBM hardware at a gas supplier
  • Conception and integration of a highly available SAN structure based on Openfiler for an international energy supplier
  • Establishment of a WLAN infrastructure at a gas supplier
  • Implementation of a network restructuring based on open source at a national meat producer
  • Implementation and protection of WLAN at a national energy provider
  • Development of an emergency management system for an international energy supplier
  • Incident monitoring and management for highly complex Active Directory for an energy supplier
  • Patch management support for gas suppliers
  • Support for security configuration in the Active Directory of a regional gas supplier
  • Separation of DNS server structure between process control and commercial network of a large energy supplier
  • Support for security management in Active Directory through AD scripting at regional gas supplier
  • Support licensing compliance through integration of KMS 200882 with regional gas supplier
  • Migration of a central control station within the process control technology into the entire Active Directory structure
  • Integration of a control system within critical infrastructures in an overall AD structure in a production data network
  • Implementation of GPO for energy options at a European energy producer/supplier operating throughout Europe
  • Implementation and support of a NAGIOS monitoring infrastructure at a regional gas supplier
  • Optimization consulting and technical support for network design/configuration at a regional gas supplier
  • Implementation of security-relevant GPOs for process-related units of an energy producer/supplier active throughout Europe
  • Technical support for secure network migration at an industrial group
  • Standard-based security zoning in process control networks of critical infrastructures and conception of central services (AD, inventory)
  • Hardening of infrastructures of the Domino DMZ of a regional gas supplier
  • Workshop-based conception of a multi-level international exchange migration with extensive security requirements for an internationally active industrial group
  • Integration of several domains into an overall AD structure of an internationally active energy producer/supplier
  • Implementation of a DHCP redundancy and relay function for a regional energy supplier
  • Detailed design of secure networks (segmentation) and central services for several locations with remote technology at a regional energy supplier
  • Construction of a secure network, telephone system and video conferencing system at a location in Germany of a Swiss company
  • Migration of a highly critical Exchange infrastructure of a large emergency hospital with over 800 * mailboxes
  • Implement and configure highly secure virtualization to deploy applications to a utility's critical infrastructure
  • Hardening of the proxy infrastructure of a regional gas supplier
  • Secure removal of Active Directory substructures within an overall structure of a pan-European energy producer/supplier
  • Optimization of the file server clusters of a large emergency hospital
  • Secure migration from Exchange databases to a SAN
  • Trouble Shooting of an Exchange infrastructure of a medium-sized foreign bank
  • Incident Response SQl Cluster for a regional energy provider
  • Creation of the Firefox template for a regional energy provider

References Physical security

  • OSSTMM audit at a merchandising and trading company
  • PhysSec Audit access control at a merchandising and trading company
  • OSSTMM PhysSec Audit at a pharmaceutical company
  • Development of an emergency management system for an international energy supplier
  • Review of the data center according to DIN and security recommendations of the Federal Office for Information Security (BSI) at an international energy provider
  • Checking company sites for physical weak points, alarm and monitoring systems at a pharmaceutical company
  • Inspection of the twelve process control centers within the company locations for physical weak points, alarm and monitoring systems, fire protection, fire alarm systems at a gas supplier
  • Checking company locations and their data centers for access protection and alarm systems at a meat producer
  • Checking the access controls of the individual company locations at an automotive parts supplier
  • Design of several data centers and technical rooms for central services and remote computer technology in process control networks of critical infrastructures
  • Detailed design of technical rooms in several power plants at a regional energy supplier

References Computer Security Incident Response Team (CSIRT)

  • Doubtless detection of incidents at a biotechnology company
  • Incident detection after a physical collapse at a metalworking company in the hardware industry
  • Incident investigation and detection in the event of SAN failure at a health insurance IT service provider
  • Incident examination and detection of Conficker infestation at a health insurance IT service provider
  • Incident investigation and detection of Conficker infestation at a regional energy supplier
  • Consulting support in setting up a Security Operations Center (SOC) for a health insurance IT service provider
  • Incident monitoring and management for highly complex Active Directory for an energy supplier