Homepage
Here you will find an overview of all our offers and services

Homepage
Here you will find an overview of all our offers and services
Industries
Whether industry-specific or cross-industry: Our IT security solutions for many areas of application
- Healthcare
- Industry, Utilities & Mobility
- Border control, police & security agencies
- Authorities, administrations & ministries
- Defence & Space
- Cloud Solutions
Industries
Whether industry-specific or cross-industry: Our IT security solutions for many areas of application
- Healthcare
- Industry, Utilities & Mobility
- Border control, police & security agencies
- Authorities, administrations & ministries
- Defence & Space
- Cloud Solutions
Products and consulting
To strengthen your digital infrastructures securely and individually, our portfolio ranges from specific products to general consulting services

Products and consulting
To strengthen your digital infrastructures securely and individually, our portfolio ranges from specific products to general consulting services
Projects
Projects at a glance we have already successfully implemented with our customers

Projects
Projects at a glance we have already successfully implemented with our customers
Career
We are looking for committed experts for software development, consulting, sales, product management and administration in all stages of their career

Career
We are looking for committed experts for software development, consulting, sales, product management and administration in all stages of their career
About us
Germany's leading cybersecurity company for the highest security standards in digitization projects
- The company
- News & Events
- Investors
- Press
About us
Germany's leading cybersecurity company for the highest security standards in digitization projects
- The company
- News & Events
- Investors
- Press
Contact
Feel free to contact us so we can work out efficient safety concepts together

Contact
Feel free to contact us so we can work out efficient safety concepts together

Project

astora GmbH

Support service ISMS – Attack detection systems

astora GmbH (astora), headquartered in Kassel, is one of the largest natural gas storage operators in Europe. astora markets a total natural gas storage volume of almost 6 billion cubic meters. The company thus holds around 25 percent of Germany's total natural gas storage capacity.

The natural gas storage facilities in Rehden and Jemgum represent critical infrastructures as defined by the BSI-Act and the BSI Ordinance Determining Critical Infrastructures (KritisV). Operators of such energy supply networks and facilities, which are considered Critical Infrastructure according to the legal ordinance pursuant to Section 10 (1) BSIG, must prove the use of an attack detection system (ADS) to the Federal Office for Information Security for the first time on May 1, 2023 (and every 2 years thereafter) pursuant to Section 11 (1f) EnWG.

In order to prepare astora in the best possible way for this audit, secunet provided support for the ADS concept. The BSI guidance on the use of attack detection systems served as the basis for requirements in this context.

In joint workshops, the current status with regard to requirements fulfillment was first determined. The basis for this was an audit tool created by secunet, which also graphically shows existing deficiencies and enables structured processing of still open requirements. Based on these results, the strategy was then developed and a project plan drawn up. Already in an early phase, secunet was involved in the creation of necessary documentation. In the further course of the project, secunet supported astora GmbH in organizational as well as technical aspects, such as the definition of rules and regulations for the Security Information and Event Management (SIEM) and the testing and documentation of the integrated log data sources.

In the context of regular jour fixes and workshops, whose participants varied depending on the topic, a continuous exchange was ensured. When drawing up catalogs of measures, both astora's internal requirements and requirements from the guidance were taken into account. The result was a custom-fit, individual attack detection system that reflected the legal requirements. In order to prepare astora for the audit in the best possible way, the audit tool, which mapped the requirements from the orientation guide, was completed and evaluated together. Subsequently, secunet accompanied the audit by an external auditing body.

Even after the successful proof, secunet will continue to support the following project tasks in order to ensure continuous improvement of the attack detection system.

Contact

secunet Security Networks AG
Kurfürstenstraße 58
45138 Essen

Phone: +49 (0) 201 5454-0
E-Mail: info(at)secunet.com

LinkedIn | XING

Terms & conditions Data protection Whistlebl.-Tool Imprint