{"id":12018,"date":"2021-05-07T18:10:04","date_gmt":"2021-05-07T16:10:04","guid":{"rendered":"https:\/\/usd.formwandler.rocks\/security-audits\/kritis\/"},"modified":"2026-03-09T14:37:08","modified_gmt":"2026-03-09T13:37:08","slug":"kritis","status":"publish","type":"page","link":"https:\/\/www.usd.de\/en\/security-audits\/kritis\/","title":{"rendered":"KRITIS"},"content":{"rendered":"

[et_pb_section fb_built=\"1\" _builder_version=\"4.16\" _module_preset=\"default\" custom_padding=\"0px||||false|false\" global_colors_info=\"{}\" theme_builder_area=\"post_content\"][et_pb_row _builder_version=\"4.16\" _module_preset=\"default\" width=\"100%\" custom_padding=\"0px||||false|false\" global_colors_info=\"{}\" theme_builder_area=\"post_content\"][et_pb_column type=\"4_4\" _builder_version=\"4.16\" _module_preset=\"default\" global_colors_info=\"{}\" theme_builder_area=\"post_content\"][et_pb_text _builder_version=\"4.16\" _module_preset=\"default\" text_text_color=\"#FFFFFF\" text_font_size=\"30px\" text_line_height=\"1.2em\" header_font=\"Roboto||||||||\" header_text_color=\"#F07F1D\" header_font_size=\"50px\" background_image=\"https:\/\/www.usd.de\/wp-content\/uploads\/header-kritis-1.jpg\" custom_margin=\"-25px||0px||false|true\" custom_padding=\"166px|21px|62px|21px|false|true\" global_colors_info=\"{}\" theme_builder_area=\"post_content\"]<\/p>\n

KRITIS-Audit<\/h1>\n

Security proof for operators of critical infrastructures<\/p>\n

[\/et_pb_text][\/et_pb_column][\/et_pb_row][et_pb_row make_equal=\"on\" _builder_version=\"4.23.1\" _module_preset=\"default\" global_colors_info=\"{}\" theme_builder_area=\"post_content\"][et_pb_column type=\"4_4\" _builder_version=\"4.16\" _module_preset=\"default\" global_colors_info=\"{}\" theme_builder_area=\"post_content\"][et_pb_text _builder_version=\"4.23.1\" _module_preset=\"default\" global_colors_info=\"{}\" theme_builder_area=\"post_content\"]<\/p>\n

With increasing digitization, modern infrastructures are becoming more efficient and intelligent \u2013 but also more susceptible to disruptions and breakdowns, for example through attacks by cybercriminals. In order to provide the best possible protection for these infrastructures, which are essential to the general public, the German Federal Office for Information Security (BSI) has issued legal regulations.<\/p>\n

The BSI Act requires operators of critical infrastructures<\/a> (KRITIS) to take appropriate organizational and technical precautions to protect against disruptions to the availability, integrity, authenticity and confidentiality of their information technology systems, components or processes. The state of the art shall be observed.<\/p>\n

[\/et_pb_text][\/et_pb_column][\/et_pb_row][et_pb_row column_structure=\"1_4,3_4\" disabled_on=\"off|off|off\" _builder_version=\"4.23.1\" _module_preset=\"default\" custom_margin=\"30px||30px||true|false\" border_width_top=\"2px\" border_color_top=\"#F07F1D\" border_width_bottom=\"2px\" border_color_bottom=\"#F07F1D\" global_colors_info=\"{}\" theme_builder_area=\"post_content\"][et_pb_column type=\"1_4\" _builder_version=\"4.16\" _module_preset=\"default\" global_colors_info=\"{}\" theme_builder_area=\"post_content\"][et_pb_image src=\"https:\/\/www.usd.de\/wp-content\/uploads\/icon-symbol-orange-007-2.png\" title_text=\"icon-symbol-orange-007\" _builder_version=\"4.23.1\" _module_preset=\"default\" global_colors_info=\"{}\" theme_builder_area=\"post_content\"][\/et_pb_image][\/et_pb_column][et_pb_column type=\"3_4\" _builder_version=\"4.16\" _module_preset=\"default\" global_colors_info=\"{}\" theme_builder_area=\"post_content\"][et_pb_text _builder_version=\"4.27.4\" _module_preset=\"default\" global_colors_info=\"{}\" theme_builder_area=\"post_content\"]<\/p>\n

\n
\n
\n

NIS 2: Be prepared<\/span><\/span><\/h2>\n<\/div>\n
Prepare your company in good time: Conduct a gap analysis to uncover specific deviations between your company's security organization and the requirements of NIS 2. This allows you to plan and carry out suitable implementation projects. Find out more here<\/a>.<\/span><\/span><\/div>\n<\/div>\n<\/div>\n

[\/et_pb_text][\/et_pb_column][\/et_pb_row][et_pb_row _builder_version=\"4.16\" _module_preset=\"default\" custom_padding=\"61px||2px|||\" global_colors_info=\"{}\" theme_builder_area=\"post_content\"][et_pb_column type=\"4_4\" _builder_version=\"4.16\" _module_preset=\"default\" global_colors_info=\"{}\" theme_builder_area=\"post_content\"][et_pb_text _builder_version=\"4.16\" _module_preset=\"default\" global_colors_info=\"{}\" theme_builder_area=\"post_content\"]<\/p>\n

Are you an operator of critical infrastructures?<\/h2>\n

[\/et_pb_text][\/et_pb_column][\/et_pb_row][et_pb_row column_structure=\"3_5,2_5\" _builder_version=\"4.16\" _module_preset=\"default\" custom_padding=\"20px|||||\" global_colors_info=\"{}\" theme_builder_area=\"post_content\"][et_pb_column type=\"3_5\" _builder_version=\"4.16\" _module_preset=\"default\" global_colors_info=\"{}\" theme_builder_area=\"post_content\"][et_pb_text _builder_version=\"4.16\" _module_preset=\"default\" global_colors_info=\"{}\" theme_builder_area=\"post_content\"]<\/p>\n

For each KRITIS-relevant sector, the BSI has defined different thresholds. If a company reaches the threshold value, it is considered an operator of critical infrastructures.<\/p>\n

Even if your company is not classified as a KRITIS company, IT security certifications may be necessary for you. Especially if you are a partner or supplier of a KRITIS company.<\/p>\n

[\/et_pb_text][\/et_pb_column][et_pb_column type=\"2_5\" _builder_version=\"4.16\" _module_preset=\"default\" global_colors_info=\"{}\" theme_builder_area=\"post_content\"][et_pb_text _builder_version=\"4.16\" _module_preset=\"default\" global_colors_info=\"{}\" theme_builder_area=\"post_content\"]<\/p>\n

\n

The regulation applies to the following sectors:<\/h3>\n<\/div>\n