TLPT: Ensure Readiness. Start Preparing Now.

Are you expecting a request for Threat-Led Penetration Testing from your supervisory authority? We will accompany you.

NIS-2 Implementation Act Now In Force

The new requirements apply from 06.12.25 - without a transition period.

AI with Security in Mind. Right from the Start.

AI is changing processes. We accompany you from initial choice to operation – ensuring that security and compliance are considered right from the start.

Learn more

DORA: Have You Implemented All Mandatory Requirements?

From harmonization to ICT third-party oversight: We are at your side.

Learn more

Identify the Vulnerabilities in Your IT Infrastructure

Protect your company proactively.

Learn more

Our focus. more security.

Security Audits

NIS-2. KRITIS. Supply Chain. Cloud. Due Diligence.

Learn more

PCI & Payment Security

DSS. SSF. P2PE. 3DS. PIN. SWIFT. Consulting. Assessments. Certifications. ASV Scans.

Learn more

Pentests & Red Teaming

Systems. Applications. Mainframes. SAP. Cloud. AD. Red Team Assessments.

Learn more

Security Analyses

Security Scans. Code Review. Incident Response. Forensik. Vulnerability Management.

Learn more

Security Consulting: ISMS / ISO 27001

Strategy. Consulting. Implementation. Audit Readiness.

Learn more

Security Consulting: InfoSec in Finance

DORA. Regulatory Requirements. Strategy. Consulting. Implementation.

Learn more

~200

Employees

1994

Founding year

3

Locations

(Neu-Isenburg, Cologne, Munich)

> 900

Customers worldwide

News

Security Advisories on PRTG Network Monitor

Jan 23, 2026 | News, Pentests & Security Analyses, Security Advisories, usd HeroLab

The pentest professionals at usd HeroLab examined the PRTG Network Monitor web application as part of web application pentests and identified several vulnerabilities. Two vulnerabilities relate to cross-site scripting (XSS), which allows attackers to inject JavaScript...

PCI Secure Software Standard v2.0: What You Should Know

Jan 20, 2026 | News, PCI

On 15 January 2026, the PCI Security Standards Council (PCI SSC) released version 2.0 of the PCI Secure Software Standard. This is the first comprehensive revision since the introduction of the standard. Insight into the Key Changes The new version streamlines the...

Part-IS and ISO 27001: How to Leverage Synergies for Your Compliance

Jan 14, 2026 | ISMS, News

On 22 February 2026, the EU Regulation Part-IS for aviation organizations will come into force. They must manage information security risks in a way that best protects civil aviation safety. Many already rely on an ISMS according to ISO 27001 – but is that enough for...

Our certifications and accreditations

TLPT: Ensure Readiness. Start Preparing Now.

NIS-2 Implementation Act Now In Force

AI with Security in Mind. Right from the Start.

Ready for Part-IS Compliance?

DORA: Have You Implemented All Mandatory Requirements?

Identify the Vulnerabilities in Your IT Infrastructure

PCI DSS v4.0.1

Ready for ISO 27001?

Our focus. more security.

Security Audits

PCI & Payment Security

Pentests & Red Teaming

Security Analyses

Security Consulting: ISMS / ISO 27001

Security Consulting: InfoSec in Finance

Employees

Founding year

Locations

(Neu-Isenburg, Cologne, Munich)

Customers worldwide

News

Security Advisories on PRTG Network Monitor

PCI Secure Software Standard v2.0: What You Should Know

Part-IS and ISO 27001: How to Leverage Synergies for Your Compliance

Our certifications and accreditations

usd AG

News

Security Advisories on PRTG Network Monitor

PCI Secure Software Standard v2.0: What You Should Know

Part-IS and ISO 27001: How to Leverage Synergies for Your Compliance

Follow Us