Due to increasing digitalisation, critical infrastructures in particular are becoming more and more vulnerable to internal and external attacks. Special protection for these also means protecting our society.

The Act to Increase the Security of Information Technology Systems (IT Security Act) came into force in July 2015. Together with the KRITIS Regulation published in 2016 and 2017, it requires the implementation and verification of general and industry-specific security measures and a reporting obligation. The corresponding transition periods for all affected companies expired in mid-2019.

Our range of services

KPMG supports you in the implementation of all requirements and the appropriate alignment of information security in your company. We offer KRITIS operators a comprehensive range of services in which we address specific industry requirements and take these into account when organising information security.

Your advantages

Identification of requirements not only at a technical level, but also at a procedural and organisational level
Effective reduction of risks
Good legal positioning in the event of a security incident
Avoidance of damage
Acquisition of new customer groups
Competitive advantage over less effectively protected companies

Suitable testing within the meaning of § 8a BSIG for the provision of evidence to the Federal Office for Information Security (BSI)

Ready to talk? Contact us.