MENU

Effective protection of IT systems and networks with penetration tests

The commonest targets of hacker attacks are the IT systems and data networks of companies. This was the finding of the study performed in 2015 by the German digital industry association Bitkom. In order to detect attacks as early as possible, TÜViT has been offering penetration tests on system and network levels since 1997.

TÜViT is certified by the German Federal Office for Information Security (BSI) as an IT security service provider for penetrationtesting.

 

Our methods

No matter what kind of information you provide (black/gray/white box approach), when performing the tests we use recognized standards and best practices such as NIST, OSSTMM and the German Federal Office of Information Security (BSI).

The penetration tests are performed as a combination of automated and manual tests, in order to achieve conclusive and high-quality results. This enables our IT security experts to identify specific vulnerabilities on the system and network levels. Thus you can ensure that your information security management system (ISMS) is indeed effective in practice.

Our services at glance

  • architecture and design analyses
  • review of installation and operating rules as well as security guidelines
  • configuration analyses of operating systems and network components
  • penetration tests on the system and network levels in accordance with the black/grey/white box approach
  • review of wireless access point, switch, router and firewall rulesets
  • optional performance of the SQ best practice certification procedure with the objective of a certificate being issued

For sustainable protection of the IT infrastructure of your company, we recommend verifying the effectiveness of security measures against new attack patterns at regular intervals.

Certificate

Your benefits at a glance

  • resilient risk assessment for your network security – identification of the actual risks that are not covered by ISO certification
  • leverage the breadth of TÜViT security expertise: with TÜViT, you have as your partner one of the leading experts in the field of cyber security. We are certified by the German Federal Office for Information Security (BSI) as an IT security service provider for IS audits, IS consulting, and penetration tests
  • efficient performance of penetration tests using a specially developed test platform, the “Distributed Penetration Platform” (DPP)
  • objective analysis and assessment of the established technical and organizational security measures in the field of system and network security
  • definition of your security maturity level on the basis of recognised standards and best practices (e.g. NIST, OSSTMM, and the German Federal Office of Information Security (BSI))
  • increasing the efficiency and overall security level through individually derived recommendations for action
  • fulfilling duties of care in test performance as well as security and compliance requirements

Further services

Penetration Tests
As an IT security service provider for penetrationtesting we help to identify organizational and technical security vulnerabilities.
Read more
Web Application Security

Web Application Security
In order to enable you to secure the applications that drive your business, TÜViT offers penetration tests for web applications tailored to your needs.
Read more
Advanced Persistent Threats

Advanced Persistent Threats
Advanced Persistent Threats (APTs) are highly developed and targeted attacks that operate covertly in order to leave no visible traces. TÜViT offers various modules to prevent Advanced Persistent Threats.
Read more
Enhanced Security Services

Enhanced Security Services

TÜViT offers Enhanced Security Services, to keep your IT security level high at all times: from monitoring and retesting up to Red-Teaming.
Read more

Mobile Security
TÜViT mobile-specific testing approach offers optimal protection for your mobile data. From the analysis of mobile strategy and evaluation of IT infrastructure including mobile device management systems, through to application testing.
Read more
Industrial Security

Industrial Security
In the context of the Internet of Things (IoT), the networking of systems for process control, production and automation is increasing dramatically. As a result, challenges are also increasing in relation to security. TÜViT offers security checks and penetration tests in order to reduce security vulnerabilities in your production infrastructure.
Read more
SQ Best Practice Certification Procedure

SQ Best Practice Certification Procedure
With its Security Qualification (SQ), TÜViT offers a standardized and flexible certification procedure that allows the integrated analysis of products and networked system solutions.
Read more

Router Security: BSI TR-03148
With BSI TR-03148 for "Secure Broadband Routers", you – as a manufacturer – can prove that your broadband routers meet the security requirements defined by the BSI. We check the implementation and accompany you on the way to successful certification according to BSI TR-03148.
Read more

CyberSecurity Certified (CSC)
Are you a manufacturer of a CIoT product and want the security of your (smart home) device confirmed by an independent third party? Then we will be happy to accompany you on your way to a successful CSC certificate.
Read more

Accelerated Security Certification (BSZ)
The BSZ is an independent certificate that confirms the security statement of your IT product – quickly, predictably and with a minimum amount of documentation.
Read more