Security is playing an increasingly important role for companies who are making more extensive use of IT-supported networked cooperation and are faced with the growing complexity of IT architectures.

We help companies to systematically examine all security issues in all areas of the company IT system.

Numerous requirements must be coordinated with one another when designing, introducing and operating secure systems, even if such requirements might first appear to be contradictory. Technical security is therefore accompanied by the need for user-friendliness and data protection, both of which must be translated into company-specific strategies and traceable measures. Compliance with basic legal conditions and, not least, questions of the cost-effectiveness of investments in IT security measures are also taken into consideration in strategy development. Workshops with IT managers and users help to raise awareness of security issues amongst company employees, which also helps to identify company-specific security requirements. We also develop role and rights-based access concepts and carry out analyses of relevant organizational weak points.

In the area of identity management, for example, we offer assistance in selecting and introducing enterprise identity management systems (single-sign-on) and give advice on the use of meta-identity management systems across several companies. Together with security managers, we establish concepts for dealing with organizational incidents (procedural models in incident management), so that the company can react immediately and effectively to possible threats due to computer crime or attacks on the IT system.