Outstanding expertise
Information Security Consulting
Whether you need to set up or expand an information security management system, perform a quick check, or comprehensively prepare for an audit in accordance with ISO 27001, IT-Grundschutz, KRITIS, TISAX, or Section 44 of the German Banking Act (KWG) - we have the expertise you need to bring your information security to the optimal level of maturity.
Information Security Management System
ISMS
We support you in defining an Information Security Management System (ISMS) for your company or in analyzing and optimizing an already existing one. With an ISMS you are able to define, manage, control, maintain and continuously improve your company’s information security.
Critical infrastructures
KRITIS
Do you need advice on whether your company falls under the KRITIS regulation and would like to know what this means for your company? Or maybe you already are KRITIS regulated and need support in implementing or improving the legal requirements?
We have numerous KRITIS experts and advisors who will support you in all matters, whether it is in gap analysis, in-depth KRITIS audit, communication with BSI, trainings or support in remediation of deficiencies.
ISO 27001 Consulting
You want to prove to your customers that you have established a high level of protection based on ISO 27001? Or you are even striving for an ISO 27001 certification? Your ISMS is linked to ISO 27001 and you need competent support to establish or extend it?
We have certified and experienced ISO 27001 lead auditors who can support you within our information security consulting services and find the most efficient and best way for your company.
Risk management for information security
GOVERNANCE, RISK & COMPLIANCE
How are information security risks most effectively and efficiently controlled, measured, managed, escalated and regularly reported to all necessary stakeholders?
We understand the challenges in balancing between additional security value and risk acceptance. By experience we provide potential approaches in efficient information security reporting that includes establishing reporting systems, interpreting legal and regulatory requirements and defining as well as building an internal control system.
When BaFin knocks on the door...
§44 IT SPECIAL AUDIT
What kind of findings are to be expected and in what criticality? Most of all, what kind of consequences follow for the management? We have extensive experience in the preparation, execution, follow-up and mitigation of findings of the banking supervisory authority (BaFin) in special IT audits according to §44 of the German Banking Act (KWG).
What is the best way to prepare for a 44 audit and how does it proceed? What kind of findings are to be expected and in what criticality, and what consequences can these have for management?
How do you set up a comprehensive mitigation program to address the findings, including regular reporting to BaFin, and how do you find suitable (external) personnel for remediation?
From strategy, to analysis, execution, remediation and operations, we can provide you with comprehensive support based on our expertise. We have been through audits and solved all kinds of cases, so we know all the possible pitfalls you may encounter.
Standards & Policies
Do you need regulatory acceptable guidelines on all information security topics or a review and optimization of your company's existing specifications?
We support you in defining the most useful guidelines and in implementing them in your company, whether it is an information security policy or guideline,.
Especially for KRITIS operators
External ISB
Qualified expertise as an experienced ISB is very hard to find on the market. However, legal and regulatory requirements force companies to either build this expertise internally or buy it externally.
We have many years of expertise as information security officers and can support you as an externally appointed ISB quickly, efficiently and professionally. Should you wish to fill this position internally, we will also support you in finding suitable candidates for this position.
With us, you do not get a lone wolf, but a team of experienced experts, which constantly monitors and supports the security of your company as a team.
Extensive experience in information security
EXPERTISE
From junior SOC analysts to senior auditor, from ISO 27001 lead auditor to IT-Grundschutz lead auditor, our employees cover almost all areas in information security.
We bring over 100 years of professional practical experience to your company including long-time, experienced and award-winning information security officer (ISB).
FULL STACK PROTECTION FOR YOUR SAP SYSTEM
SAP SECURITY CONSULTING
You want to introduce a new SAP system or you already have SAP and want to secure it (even better)?
We support you in planning, setting up and sustainably securing your SAP systems. This includes a SAP security concept, manual and automated SAP security vulnerability checks, the detection of security-relevant misconfigurations, detailed and targeted reporting and regular security code analyses.
YOUR TRUMP IS
OUR EXPERIENCE
Whether you are a small business, a medium-sized company or a major international corporation, whether you are in the public sector, industry, trade, banking, automotive, energy or aviation - our employees have seen (almost) everything and always find the best and most effective measures to bring information security in your company to the desired level of maturity and to maintain it there.
We are
Your SWAT Team
At Apollon Security there are no lone warriors, but only team players. You benefit from this strong team in the background, both in consulting and in every product & service we develop ourselves.
Our personnel selection is very strict. Only people who share our mindset and act at the highest professional and human level make it to us.
