Our focus. more security.
Security Audits
NIS-2. KRITIS. Supply Chain. Cloud. Due Diligence.
PCI & Payment Security
DSS. SSF. P2PE. 3DS. PIN. SWIFT. Consulting. Assessments. Certifications. ASV Scans.
Pentests & Red Teaming
Systems. Applications. Mainframes. SAP. Cloud. AD. Red Team Assessments.
Security Analyses
Security Scans. Code Review. Incident Response. Forensik. Vulnerability Management.
Security Consulting: ISMS / ISO 27001
Strategy. Consulting. Implementation. Audit Readiness.
Security Consulting: InfoSec in Finance
DORA. Regulatory Requirements. Strategy. Consulting. Implementation.
~200
Employees
1994
Founding year
3
Locations
(Neu-Isenburg, Cologne, Munich)
> 900
Customers worldwide
News
7 Questions about the Cyber Resilience Act (CRA)
1. What is the Cyber Resilience Act? With the Cyber Resilience Act (CRA for short), the EU is introducing a regulation for the first time that aims to improve the cybersecurity and resilience of products with digital elements. Unlike an EU directive, the...
New Requirements of ISO/IEC 27006-1:2024: What Changes Do They Bring for Your Audit?
ISO/IEC 27006-1:2024 contains the formal requirements for certification bodies that must be implemented when auditing an information security management system (ISMS). It therefore regulates inspection bodies that audit and certify companies in accordance with ISO...
Security Advisory on Element Android
The pentest professionals at usd HeroLab examined the Element application for Android during their pentests. They identified a vulnerability in the PIN protection. Under certain circumstances, the user is not logged out if he enters the wrong PIN more than the...
Excerpt from our customers
