Security that holds up in daily reality
Security is more than a firewall. We look at network, access, identities, endpoints and cloud services as one system, and place measures where they have the most effect.
Vendor-independent, transparently documented and aligned with ISO 27001 and NIS2.
Service building blocks
Vendor-independent NGFW
Planning, configuration and hardening of next-generation firewalls from multiple vendors, including IPS, URL filtering, application control, SSL inspection, VPN, NAT, zone model and clean rule-base design.
VPN & remote access
Secure access for employees, contractors and mobile devices with stable VPN concepts and clear access policies.
Microsoft Entra ID & identity security
Protection of user accounts, roles, admin access and cloud access with Entra ID, MFA and Conditional Access.
Zero Trust & ZTNA
Access is evaluated by identity, device, location, risk and context, not just by network.
SASE & Security Service Edge
Cloud-based security for hybrid teams, SaaS access, internet traffic, remote work and distributed sites.
Cisco ISE & NAC
Network access control with 802.1X, MAB, profiling, dynamic VLAN assignment, and guest/BYOD concepts.
Endpoint security / EDR & XDR
Protection of clients and servers through modern endpoint security, EDR features and XDR-driven detection, including analysis, alert triage and response support for malware, ransomware and suspicious activity.
Email & web security
Protection of email and web access through secure gateways, URL filtering, anti-malware, sandboxing and policy management.
Network segmentation
Separation of user, server, guest, VoIP, IoT and management networks to reduce attack surface.
Vulnerability assessment
Review of patch levels, permissions, firewall rules, configurations and known security risks.
Security hardening
Hardening of firewalls, switches, WLAN, VPN, servers, cloud services and admin access along established best practices.
Logging, monitoring & compliance
Logging, alerting and documentation for operations, audits, security reviews and compliance requirements.
What you get out of it
Reduced attack risk
Segmentation, identity protection and consistent policies make attacks substantially harder.
Audit readiness
Documentation and measures aligned with ISO 27001 and NIS2.
Real visibility
You see what's happening, and can trace who accessed what, and when.
When a modern security architecture matters
Cloud & hybrid environments
Integrate Microsoft 365, Azure and SaaS securely, protect access through identity.
Distributed sites & remote work
Secure connectivity for mobile staff and branch offices via VPN, SASE or ZTNA.
Audit or compliance requirement
ISO 27001, NIS2 or industry-specific rules, implemented technically and documented transparently.
Reviewing your existing setup
Vulnerability assessment, hardening, optimization of firewall rules and access concepts.