Increasing legal and regulatory requirements necessitate sweeping security measures and structures that are designed for the ongoing assessment of risks and the implementation of corrective measures where necessary.
We advise you on compliance with legal and regulatory requirements, as well as on the establishment of management systems to ensure long-term conformity.
More information
PostFinance: Mit effizienten Penetration Tests zur PCI DSS-Zertifizierung
CSS: Cyber Risk Management
eSANITA: Datenschutz und Datensicherheit – Grundvoraussetzung für das elektronische Patientendossier (EPD)
EW Rothrist: Strategically tackles cyber security
Datenschutz-Managementsystem (DSMS)
Vier Massnahmen für den sicheren Weg in die Cloud
Redguard Security Survey 2021 (DE)
Risk management helps in the continuous identification of risks, their systematic assessment and processing, as well as in the transparent and comprehensive communication of residual risks. We join with you to define or optimize your risk management processes, including the following areas:
The minimum ICT standard is a comprehensive framework for protecting your organization against cyber risks.
We support you in determining the maturity level of your organization. By assessing the status quo in the regard to the minimum ICT standard, we evaluate whether you are already compliant or vulnerabilities continue to exist. If the latter applies, we develop a pragmatic action plan that equips you to establish a security process within your organization and hence to comply with the minimum ICT standard in the long term.
In our Cloud Security Assessment we examine the security level of your organization with a focus on cloud security. We assess the processes for supporting and maintaining information security in this area. The assessment takes into account industry-specific requirements and international best practices such as the Cloud Security Alliance (CSA) or C5 of the BSI. Based on our interviews and technical verifications, we assess the maturity of your security level and provide you with an overall report and specific recommendations for improvement.