Attacks on IT systems in Germany cause tens of billions of euros in damage every year. Those affected are small to large companies, but also consumer households. Certified incident experts provide first aid in the event of a cyber attack.
Cyber criminals break into IT systems, read out data, encrypt it and extort a ransom for releasing the data. In such an emergency situation, it can be difficult, especially for micro and small businesses, but also for medium-sized companies, to evaluate the competence and trustworthiness of IT service providers.
Incident expert certified by the BSI
Arne Schönbohm, President of the BSI: “With the cyber security network, we want to try out a practical and helpful offer that is intended to help micro, small and medium-sized companies in the event of a cyber attack. Along a digital rescue chain, it is primarily the incident experts who will provide first aid on initial contact. We will start the pilot phase in October and are now starting the first personal certifications, thereby ensuring the professional competence and quality of the actors. "
Further information on personal certification as incident experts and a list of the currently certified incident experts are available on the BSI website. About the cyber security network project:
In October, the BSI will start a six-month pilot phase of the cyber security network (CSN). The CSN is a voluntary association of qualified experts who agree to provide their individual expertise and know-how to resolve IT security incidents and thus contribute to improving the IT security situation in Germany. By taking on reactive activities, they help to recognize and analyze IT security incidents, to limit the extent of damage and to avert further damage. The certification enables qualified persons to carry out incident treatment within the framework of the cyber security network to ensure the quality and comparability of incident treatment.
Cyber security network rescue chain
In a possible highest level of the cyber security network's rescue chain, larger IT service providers are available who operate supraregional and can provide at least three certified incident experts. In this way, a team of incident experts with special knowledge and skills for incident handling can be offered for more complex and larger IT security incidents.
A prerequisite for certification as an IT security service provider is the implementation and maintenance of the DIN EN ISO / IEC 17025 standard. After the certification has been granted, the BSI checks regularly so that the service providers continue to meet the requirements. Information and requirements for certification as an IT security service provider as well as the list of currently certified IT security service providers are available on the BSI website.
More at BSI.bund.de