With our extensive experience and information security and industry expertise, we can support you as a KRITIS operator or NIS-2 company.
Your contact
Minimise risks and increase compliance
We assist you in minimising your specific risks and increasing your compliance so that you can fulfil your duty to ensure the security of supply for the population and protect yourself appropriately and in line with the state of the art against cyber attacks. We advise you on the fulfilment of existing and new legal and regulatory requirements that are necessary for the protection and resilience of your critical infrastructures, networks and information security.
Customised consulting, support and audit services for critical infrastructures
With our extensive experience in risk assessment and compliance as well as our information security and industry expertise, we support you on your journey as a KRITIS operator or NIS2 company with customised consulting, support and audit services. We have in-depth knowledge of the specific requirements and regulations that apply to critical infrastructures. This expertise is crucial to ensure that your company fulfils the legal requirements. As independent third parties, auditors can objectively assess the integrity and effectiveness of your security measures and ensure that they comply with KRITIS or NIS2 requirements. If a KRITIS audit is imminent, we can help you ensure that your systems and processes are audit-ready. Overall, PKF Fasselt's support offers a clear improvement in terms of expertise, risk minimisation and confidence in critical infrastructure security. This can help your organisation develop and maintain a robust and reliable security strategy to ensure the availability and integrity of your services. As a result, compliance with KRITIS requirements shows your customers that you take the security and availability of your services and infrastructure seriously. This can increase customer satisfaction and trust in your organisation.
Our services in the area of KRITIS audits according to § 8a BSiG
KRITIS and NIS2 consulting
- We advise you on determining which regulatory provisions and laws are relevant for your company.
- We support you in defining and describing the scope of your critical infrastructure if it is relevant to KRITIS.
- We work with you to analyse the current status of your compliance with the relevant requirements, e.g. in accordance with BSIG in conjunction with the KRITIS Regulation and the EU NIS 2 Directive.
Support with your implementation of KRITIS and NIS2 requirements
- We support you in the implementation of KRITIS/NIS2 requirements.
- We support you as an audited company in the audits required every year in accordance with Section 8a BSiG for you as a KRITIS operator.
Review of the implementation of KRITIS requirements
- On request, we can carry out an audit in preparation for your KRITIS certification. This can cover topics such as risk assessment, implementation of security measures, cybersecurity policies and procedures, training and awareness-raising.
- On request, we can also become part of the audit team to audit your critical infrastructure in preparation for the KRITIS proof that must be provided every two years. We have the necessary competences for this in accordance with § 8a (3) BSiG.