References (extract)

References (extract)

We let (reference) projects speak on our behalf

Below you will find some examples of reference projects that we have carried out in various fields. This excerpt provides you with an insight into both our current and our successfully completed projects and therefore also into our service portfolio. We would like to thank our customers for their trust and permission to publish their projects on this page.

Do you have any further questions or are you interested in our services?
We look forward to receiving your call or message.

Projects carried out in the Field of Cyber Security

Security-Related Investigation, including Penetration Tests as part of TÜViT’s own Trusted Site Privacy Re-Certification Procedure

Within the framework of Trusted Site Privacy, TÜViT carried out a security-related investigation into “Telekom’s fixed-line network and mobile communications postpay accounting systems for private customers”. This comprised penetration tests at the network and application level, tests of the web application and a configuration analysis.
To the website of Deutsche Telekom AG

IT Security Audits incl. Penetration Tests and Technical Security Services

TÜViT has carried out several cybersecurity projects for the AOK Federal Association. These include security-related investigations such as penetration tests with respect to mobile & web-based applications or IT infrastructure components, configuration analyses at the system level and source code analyses.
To the website of the AOK Federal Association

Security-Related Investigation including Penetration Tests of Selected IT Control Infrastructure Components

The Essen Public Utilities Company (Stadtwerke Essen) commissioned TÜViT to conduct a security-related investigation of selected IT control infrastructure components (OT). Among other things, the analysis included automated internal/external port and vulnerability scans at the network level, a system review & a firewall ruleset review.
To the website of Stadtwerke Essen

Security-Related Investigation of the IT “Seafile” and “COAST” Solutions

As part of a security-related investigation for the firm Hamburger Hafen und Logistik AG, TÜViT determined whether the security-relevant contents of the two IT “Seafile” and “COAST” solutions could be read out, whether there was readable information about the system, whether the applications contained vulnerabilities and which system components were open to attack. The required penetration tests were performed at the application level.
To Hamburger Hafen und Logistik AG website

Security-Related Investigation including Penetration Tests of Selected IT Control Infrastructure Components

The security-related investigation on behalf of DJE Kapital AG included penetration tests with respect to selected IT infrastructure components as well as a selected web application, a qualified attack on the WLAN infrastructure at the site, passive tests from internal to the network level, a lost device check & a firewall ruleset review.
To the website of DJE Kapital AG

Projects carried out in the Field of Hardware & Software Evaluation

PAD Evaluation for the BioID Web Service (BWS) Biodetection System

As an independent testing body for IT security, TÜViT tested the Presentation Attack Detection (PAD) system developed by BioID GmbH, based on the FIDO Presentation Attack Detection Criteria and ISO/EIC 30107-3. The aim was to assess the PAD mechanism with respect to the artifact detection performance (Presentation Attack Instruments).
To the website of BioID GmbH

Common Criteria (CC) Site Evaluation

TÜViT conducted an evaluation at AustriaCard in accordance with the Common Criteria in preparation for the company’s upcoming certification. As part of the service, the site security documents were evaluated, a required audit was performed and an Evaluation Report prepared.
To the website of AUSTRIACARD GmbH

KoCoBox Med+ E-Health Connector CC Evaluation

TÜViT evaluated the network connector of KoCo Connector GmbH according to the requirements of the Common Criteria Protection Profile BSI-CC-PP-0097. Based on the above Protection Profile, the network connector was methodically tested and verified according to EAL (Evaluation Assurance Level) 3+.
To the website of KoCo Connector GmbH

Projects carried out in the Field of Data Centers

Accompaniment of new construction projects according to EN 50600 as well as certification of various data centers (IBX) according to TSI.STANDARD and EN 50600

TÜViT accompanies a number of new construction projects of Equinix (Germany) GmbH from the planning stage to the final certification. Several of Equinix's data centers (IBX) have already been successfully certified by TÜViT according to TSI.STANDARD and EN 50600.
To the Equinix website

Certification of the T-Park Bremen Data Center

TÜViT certified the T-Park HB Data Center of Bremen Briteline GmbH according to TSI.STANDARD V4.2 Level 2 (extended). The basis for this was the TSI.STANDARD criteria catalog, which comprises the fields of the environment, structural design, fire protection, alarm & extinguishing technology, security systems & organization, structure of the cabling, power supply, air conditioning systems, organization, documentation and the dual site data center.
To the website of Bremen Briteline GmbH

Certification of the Eggenstein / Hochstetten Data Centers

The Stiftung Kirchliches Rechenzentrum Südwestdeutschland (Southwest Germany Church Data Center Foundation) has had its dual site data center, consisting of the Eggenstein Data Center and the Hochstetten Data Center, certified by TÜViT in accordance with TSI.STANDARD V4.2. Here, the dual site data center achieved DDC Level 3. During the course of the certification, the physical security and availability of the data centers were considered.
To the website of Stiftung Kirchliches Rechenzentrum Südwestdeutschland

Projects carried out in the Field of Data Privacy

Provision of an External Data Protection Officer (DPO)

TÜViT provides an external Data Protection Officer for six companies within the Steigenberger Hotel Group in accordance with the GDPR/Federal Data Protection Act (BDSG). TÜViT serves as a data protection advisor to three other subsidiaries in the Switzerland, Netherlands and Belgium region. This includes the coordination of data protection management, the processing of regular inquiries and the tasks specified in Article 39 of the GDPR.
To the Steigenberger Hotel Group website

Provision of an External Data Protection Officer (DPO)

TÜViT supports the German branch of the Dutch Corporate Group Van Ameyde International B.V. by providing an external Data Protection Officer. The DPO’s work includes, among other things, performing the tasks pursuant to Article 39 GDPR, monitoring compliance with relevant data protection regulations, as well as advising, raising the awareness of and training the employees involved in processing operations.
To the website of Van Ameyde

Performance of a TÜViT Trusted Site Privacy (TSP) Audit, including Security-Related Investigation

Based on TÜViT’s own Trusted Site Privacy procedure, TÜViT evaluated the web portal for employee offers of the Corporate Benefits Group with regard to aspects of corporate data protection. The audit procedure was supplemented by an additional security-related investigation, during the course of which the IT installation (network application & web portal) was checked for vulnerabilities.
To the website of corporate benefits GmbH

Data Protection Implementation according to EU-GDPR

TÜViT advised Garagen Carport Profis with regard to adapting the existing data protection management system to the legal requirements of the EU-GDPR and the new Federal Data Protection Act (BDSG-neu). The focus of the consultation was on the measures taken to ensure the data protection-compliant handling of personal data in accordance with the applicable data protection regulations.
To the website of Garagen Carport Profis GmbH & Co. KG

Projects carried out in the Field of ISMS

Re-certification according to ISO 27001 based on IT Basic Protection within the Area of Validity of the E-POST PLATFORM

The E-POST platform of the Deutsche Post DHL GROUP was reviewed by TÜViT with regard to the implementation of the protective measures of the IT Basic Protection Compendium. The subject of the study comprised the products Digital Copy, eIDAS Letter, optional end-to-end encryption and other applications processed on the E-Post platform.
To the website of Deutsche Post DHL Group

Auditing Services for Certification according to ISO 27001 based on IT Basic Protection

For the NÜRNBERGER Versicherung insurance company, TÜViT planned, conducted and followed up on a certification audit and two surveillance audits according to ISO 27001 based on IT Basic Protection. The aim was subsequent successful certification according to the international standard.
To the website of NÜRNBERGER Versicherung

ISO 27001

TÜViT supported C&P Capeletti & Perl Gesellschaft für Datentechnik mbH in maintaining and improving the existing information security management system (ISMS) based on the international ISO 27001:2013 standard. In order to ensure the maintenance of the ISO 27001 certification, TÜViT carried out monitoring of C&P’s ISMS project with regard to the standards and process conformity for the upcoming ISO 27001:2013 certification audit.
To the website of C&P Capeletti & Perl GmbH

Performance of a Gap Analysis according to ISO 27001

TÜViT supported caplog-x GmbH on its way to successful certification in the form of a GAP analysis according to ISO 27001. The focus of the analysis was on conformity with standards and procedures. These included criteria such as the degree of implementation of the ISMS core processes or the responsibility of the management.
To the caplog-x GmbH website

Projects carried out in the Field of Industry 4.0

IEC 62443-4-1 Certification

TÜViT submitted an expert opinion on the firm SEW-EURODRIVE GmbH & Co. KG in accordance with IECEE regulations. The assessment was based on the requirements of IEC 62443-4-1. The process for IEC 62443-4-1 certification was carried out by the subcontractor TÜV NORD CERT GmbH.
To the SEW-Eurodrive GmbH & Co KG website

Certification Assessment according to IEC 62443-2-4

The Croatian system integrator KONČAR-KET commissioned TÜViT to review the SCADA system PROZA NET with respect to its conformity with IEC 62443 2-4. In addition to the document review, a Cyber Security Assessment was also conducted. The certification was carried out by TÜV NORD CERT.
To the website of the Končar Group

Projects carried out in the Field of IT and ICT Consulting

Creation of a Concept for Information Security & Data Privacy

TÜViT drew up an integrated concept for information security (KfIS) according to BSI IT Basic Protection, as well as a concept for data protection with a data protection impact assessment (DPIA) according to the standard data protection model for the planned operations control system of the central police headquarters in Lower Saxony.
To the website of the Lower Saxony Police

Federal Office of Administration: IT Strategy and IT Management

Within the scope of this project, TÜViT advises and supports the Federal Office of Administration with regard to basic strategic IT decisions and their implementation in practice, as well as with regard to key IT management issues for achieving medium- and long-term authority targets.
To the website of the Federal Office of Administration

Creation of a Map of Participants for Smart City Berlin

The aim of the project was to place the Smart City Berlin network in a content-related context with other stakeholders and to identify overlaps with these networks and stakeholders by creating a map of the participants.
To the website of Smart City Berlin

Become a reference customer now!

You miss your project on our reference page? We can change that! Just click on the link below and fill out our declaration of consent for the use of company data for reference purposes. 

You have questions? We are pleased to help!