Critical Infrastructure (KRITIS)

CRITICAL INFRASTRUCTURE (KRITIS)

How secure is your company?

The new KRITIS Umbrella Act aims to improve the physical security and resilience of critical infrastructure and facilities. To achieve this, it combines cybersecurity requirements – such as the Network and Information Security regulations (NIS 2) – with those for physical safety. The act poses major challenges for organizations and institutions in the following sectors: energy, transport and transport, water, finance and insurance, food, media and culture, government and administration, health, information technology and telecommunications.

In view of these changes, stakeholders in the above industries and sectors must react quickly and decisively with regard to innovation in safety, security and risk management. The act obligates operators of critical infrastructure and facilities to implement comprehensive security measures and to monitor them continuously.

What is critical infrastructure (KRITIS)?

“Critical infrastructure (KRITIS) comprises organizations and facilities of great national importance, the failure or impairment of which would result in long-term supply bottlenecks, significant disruption to public safety, or other dramatic consequences.”

Source: BSI - General information on KRITIS (bund.de)

Are you prepared?

KRITIS Umbrella Act: The law is expected to be passed in 2025. It obligates operators of critical infrastructure and facilities to create and implement plans and measures to increase physical security as part of an overall operational resilience strategy.

Network and Information Security (NIS 2): The NIS 2 Directive formulates the framework conditions for the protection of IT security with regard to ‘important’ and ‘particularly important’ facilities as defined by the NIS 2 Directive that have more than 50 employees or more than €10 million turnover. The directive will probably have to be implemented by all affected parties from 2025.

Our solution: We address your challenges

Our experts personally take on your challenges and work through them with you in a structured way – looking in turn at organization, technology and structures. They adopt a preventive approach by finding solutions that prevent danger. But risk cannot be reduced to zero. Rather, it is a matter of taking measures that reduce the probability of occurrence and minimize impacts to the greatest possible extent.

As consultants, we can support you throughout the process – from analysis and requirements planning through to realization and operation.  

How can we support you?

Resilience and Risk Advisory

Companies must protect themselves against a range of risks such as natural disasters, cybercrime, and burglary. Learn how to meet regulatory and industry-specific security requirements and develop flexible resilience strategies.

Learn more

Technical Advisory

With our Technical Advisory service, our specialists provide prinicipals with comprehensive technical advice and monitoring in all project phases. In this way, you can avoid errors in the early project phase, meet quality and legal requirements, and save costs.

Learn more

GLOBAL IT AND AUDIOVISUAL CONSULTING

The further digitization penetrates our lives and work environment, the more crucial it becomes to have a reliable foundation of hardware and software that ensures processes that are smooth – and more importantly – secure. Learn here how we implement these requirements in a way that is customized to your specifications.

Learn more