Blog
In today’s digital world, companies are constantly exposed to threats such as malware, ransomware and phishing. A solid cyber security strategy helps to ward off these attacks and protect company data.
Many small and medium-sized enterprises (SMEs) often do not know how they can do more for their IT security. Existing standard works for setting up an information security management system, such as the BSI’s IT baseline protection compendium, the ISO/IEC 27001 standard or TISAX, are very difficult to handle, especially for smaller companies with fewer than 50 employees.
It is precisely for these companies that a consortium led by the BSI has created the cyber risk check in accordance with DIN SPEC 27076 “IT security consulting for small and micro enterprises”.
This is not an IT security certification, but rather a positioning of a company’s own IT security level and shows which specific measures a company should implement or commission from an IT service provider.
The cyber risk check is also known as the “seahorse of information security”, as it is just the beginning and does not yet prove that information security has been fully considered.
In the cyber risk check, we ask a company about its IT security in a two to three-hour interview based on the 27 requirements from six subject areas. As a result, the company receives a report on the degree of fulfillment of the requirements and a recommendation for action for the unfulfilled requirements. This provides the company with a good starting point for preparing for emerging threats.
The main advantage of the cyber risk check is that, unlike a full audit, the check can be carried out in a resource-saving and cost-effective manner at a fixed price.
digitalSee GmbH is one of the first providers to carry out the cyber risk check using the official BSI software. Please feel free to contact us.
digitalSee GmbH
Berliner Str. 52 E
38104 Braunschweig