Successful KRITIS audit: Allgeier secion reviews IT security measures of Stadtwerke Tuttlingen
by Tina Siering
As an energy and water supplier, Stadtwerke Tuttlingen is part of the critical infrastructure (KRITIS). According to § 10 paragraph 1 BSIG (BSI Critical Infrastructure Ordinance), they must therefore meet particularly strict, legally prescribed security requirements in the area of IT security, among other things. In order to subject their IT protection measures to a comprehensive security review, the municipal utility chose Allgeier secion as a "technically competent project partner".
Allgeier secion's IT security experts then conducted a penetration test. As part of this white box audit, the entire technical IT infrastructure of Stadtwerke Tuttlingen was checked by means of an automatic vulnerability scan as well as a manual vulnerability analysis. In addition, an individually designed phishing campaign served to sensitize all employees to fake communications from cybercriminals. It became a veritable "wake-up call" for the employees.
Read how and with which tricks our pentesters proceeded and everything about the challenges and decision-making at Stadtwerke Tuttlingen in our joint success story!
Are you also looking for a proactive 24/7 network monitoring?
Contact us - we will be happy to advise you!
Related articles
As an inclusive institution, Elbe-Werkstätten has an increased security risk when it comes to IT security. In addition to already existing, established security solutions, further measures in the area of "Managed Protection and Response" (MDR) should therefore be added. The condition: It had to work simply, be affordable and also be implementable with a small team. After some research, those responsible decided on Allgeier secion's lean but effective Active Cyber Defense (ACD) service instead of their own SIEM solution (Security Information and Event Management), which they had initially considered.
In order to close potential IT security gaps, sensitize its own employees and be prepared for the worst case scenario, the Versorgungswerk der Zahnärztekammer Berlin commissioned Allgeier secion with a comprehensive, three-part IT security audit. In addition to a black box and a social engineering audit, the incident response readiness strategy was also put to the test.
Read more … Comprehensive IT security audit at Versorgungswerk der Zahnärztekammer Berlin (VZB)
Weitzer Parkett - one of Europe's leading parquet manufacturers - wanted to effectively and permanently strengthen its own IT security within the company. In order to respond to the acutely increased threat situation, the endpoint security used was to be supplemented by a solution that would enable proactive monitoring of all systems in the network. After extensive research, those responsible decided to use Allgeier secion's lean but effective Active Cyber Defense (ACD) service instead of the initially considered SIEM (Security Information and Event Management) solution - just in time to nip a Log4j attack in the bud.