Cyber Security

We protect your systems to ensure more security

The topic of IT security affects small and medium-sized enterprises as well as large corporations.

Not knowing, assessing, and continuously improving one’s own situation could therefore be described as negligence. In addition, attackers are becoming ever more professional, which requires a holistic view encompassing the technology, the processes, and the people.

We will gladly support you in assessing and improving your IT security.

Our focus is on these areas:

  • IT security audits 
  • Network-based vulnerability scans
  • Individual, neutral evaluation and development of IT security solutions
  • Safety and security

IT Security Audits

We have been conducting IT security audits within the Fraunhofer-Gesellschaft since 2002.We identify potential for improvement and provide advice in this regard at the technical and strategic levels.

For some years now, we have also been offering this service to our partners from industry. In doing so, we are guided by the ISO27000 series and other relevant best practices as well as our expertise in this area that has grown over many years.

We attach great importance to the continuous improvement and expansion of our audits and consulting services in order to provide our partners with the best possible support at all times.

Network-based vulnerability scans

In addition to IT security audits, we also perform network-based vulnerability scans to ensure cyber security.

In addition to Fraunhofer, our partners from industry also rely on our expertise. We have built a professional scanning environment for this purpose, which can also automatically check large quantities of assets for vulnerabilities. This is complemented by manual tests with relevant commercial and non-commercial tools.

In addition to the detection of vulnerabilities, our activities in this area also include assessment and elimination (e.g., countermeasures or hardening).

Evaluation and development of IT security concepts

When evaluating and developing IT security concepts, we rely on our staff’s many years of experience.

We are happy to deal with individual challenges and issues that do not fit a standard implementation in order to be able to provide the best possible cyber security. This includes evaluation and development of concepts, review of the effectiveness or inconsistencies of implemented solutions, and development of prototypes for evaluation purposes by our technicians and developers.

Safety and security

We advise and train our partners in the implementation of the new standard ISO/SAE 21434 “Road vehicles – Cyber Security Engineering” (from August 2021).

We also support the integration of cyber security engineering with safety engineering in accordance with the companion standard ISO 26262 “Road vehicles – Functional safety”; for example, on the basis of “System-Theoretic Process Analysis” (STPA), which can be used for both safety and security. 

 

Security for Safety

Reference projects in the area of Cyber Security

Industry: Construction Chemicals

MBCC Group

Fraunhofer IESE supports the MBCC Group in the implementation of an end-to-end IT security strategy.

Internal

Fraunhofer SOC

As part of the distributed Fraunhofer Security Operations Center, Fraunhofer IESE contributes its IT security competencies such as Red Teaming and IT audits.

IESE Blog

Cyber Security in the Blog

Learn more about this topic in our blog.

We support you in the area of cyber security

 

Contact our experts and benefit from our independent and neutral expertise.

 

CONTACT