We protect companies
against hackers and criminals.
What we do
We protect companies against hackers and criminals. Our work is as dynamic and diverse as the threat itself. As an accredited assessor, we advise and certify companies worldwide according to the specifications of the credit card industry and other international IT security standards. The experts at usd HeroLab identify vulnerabilities in IT systems and applications. Our security consultants advise companies holistically on questions of information security, risk management, and IT compliance. The Cyber Security Transformation Academy (CST Academy) promotes exchange and knowledge transfer within the community. more security is our mission.
What does usd stand for?
When usd was founded in 1994, the three-letter code stood for management consulting, security and services and described our then broad portfolio of services. Over the years, usd has developed and refined its portfolio. Today, the three-letter code stands for our mission and our values:
Unabhängigkeit (independence)
We’re a community of experts. We’re independent from products, haven’t taken out any loans, aren’t dominated by a client, we’re inventing ourselves. “U” is for “Unabhängigkeit”.
Sicherheit (security)
The center of our name and the center of what we do. We protect companies against hackers and criminals. “S” is for “Sicherheit” (Security).
Demut (humility)
No one is all-knowing, there is no absolute security. We are aware of our responsibility and we know that our task is complex. That’s why we share our knowledge, cooperate with the best and dedicate each day to “more security”. “D” is for “Demut” (Humility).
Our commitment
In order to protect businesses against hackers and criminals, we must ensure that our skills and knowledge are up to date at all times. Therefore, security research is just as important to our work as is building up a security community to promote an exchange of knowledge. After all, more security can only be achieved if many people take on the task.
Building competence. Sharing knowledge. Acting together.
Live Hacking
Seminars & Training
Webinars
Cyber Security Forums
Seminars & Trainings
Webinars
Cyber Security Forums
Partner to Leading Institutes
- CAST
-
ATHENE
- Allianz für Cybersicherheit
Security Research
- Responsible Disclosure
- Security Advisories
- Articles & Publications
- BioMobile II
- KMU AWARE
Committed to Teaching
Our Management
Manfred Tubach
Chairman of Executive Board
Andreas Duchmann
Member of Executive Board
Matthias Göhring
Member of Executive Board
Christopher Kristes
Member of Executive Board
Andrea Tubach
Member of Executive Board
Bettina Aumann
Authorized Signatory
Daniel Heyne
Authorized Signatory
Jan Kemper
Authorized Signatory
Anna-Magdalena Kohl
Authorized Signatory
Stephan Neumann
Authorized Signatory
Andrea Rupprich
Authorized Signatory
Torsten Schlotmann
Authorized Signatory
Felix Schmidt
Authorized Signatory
Dr. Christian Schwartz
Authorized Signatory
Download our Company Brochure
Our references
Customer Stories
NTT Global Data Centers EMEA certified against PCI DSS v4.0 for the first time
NTT Global Data Centers EMEA, leading data center provider in Europe, successfully completed the joint PCI DSS certification project with usd AG on March 1, 2023. As a result, NTT Global Data Centers EMEA offers its customers a demonstrably secure environment for...
PHOENIX group establishes Europe-wide ISMS with support from usd AG
Particularly in high-growth industries with increasing internationalisation, such as the pharmaceutical industry, corporations today face the challenge of setting up their information security governance in such a way that it meets the associated risks and challenges....
Secure in the Cloud: Myra Security Achieves BSI C5 Attestation
Security technology manufacturer and Security-as-a-Service provider Myra Security demonstrates security in the cloud. In partnership with the Cologne-based auditing company HKKG, usd AG auditors verified in an audit according to IDW PH 9.860.3 that Myra Security meets...
noris network certified against PCI DSS v4.0 for the first time
In October, Nuremberg-based IT service provider noris network AG was certified as a housing provider in accordance with PCI DSS v4.0 by usd AG. The latest version 4.0 of the Payment Card Industry Data Security Standard (PCI DSS) was published in March of this year and...
OmniPOS from GK Software successfully certified according to PCI Secure Software Standard
Image source: GK Software SE Whether for start-ups or global players – a PCI certification project can pose a major challenge to any business. All the more reason for us to look back on the successes we have achieved together with our clients. After all, nothing...
Dohop Successfully Certified according to PCI DSS
Dohop, an technology provider for the airline industry, has been successfully certified by usd AG according to PCI DSS. Based in Iceland, Dohop provides, operates and supports the virtual interlining platforms of a number of partner airlines including the booking and...
More Security for Patient Data: Pentest and Cloud Audit at medavis
Compliance requirements are often the driving force behind the necessity of a pentest. However, each company and its IT infrastructure has to be looked at individually. Usually the initially requested pentest is not enough. For example, if applications run in the...
Invia SSC Germany GmbH Successfully Certified acording to PCI DSS
Invia PCI DSS Core-Team: „IT Infrastructure“ & Software Development “Invia Payment” About INVIA The Invia Group is a pan-European market leader in online travel distribution with 1300 employees in 16 offices across 7 countries....
VR Payment and usd AG smooth the way for merchants’ compliance validation
With the help of the usd PCI Compliance Program, VR Payment guides its merchants pragmatically and professionally through the PCI DSS compliance validation process without compromising security or formal correctness. Read the full success story here.
noris network AG Successfully Certified According to PCI DSS
usd AG confirms secure handling of credit card data in data centers Whether for start-ups or global players – a PCI certification project can pose a major challenge to any business. This makes it all the more enjoyable for us to look back on the success we have...