Egede provides expertise in industrial and critical infrastructure cybersecurity. We have many years of experience and work with large and small companies, both in Denmark and internationally. Søren Egede Knudsen is internationally known for his extensive experience and quality service.
Egede offers expertise in many areas, such as:
Cybersecurity Consultant - Trusted Advisor
General cybersecurity consulting services range from security design, including the architecture of industrial networks and risk analysis, to more in-depth technical tasks such as malware analysis, assessments, or managing various types of cyber incidents.
Industrial Cybersecurity Analysis and Penetration Testing - "Offensive Thinking"
Analysis and penetration testing have been used for some time in non-industrial IT networks. In the industrial sector, it's equally important but more challenging and requires special knowledge and experience within the industrial environment. Without this knowledge and experience, a security test, such as a penetration test, will not only be less valuable but can also have catastrophic consequences for certain industrial systems. Egede specializes in industrial environments, with competence and experience in conducting security tests in these special environments. We recommend combining analysis and penetration testing for industrial and critical infrastructure environments. Our testing is specifically targeted at your industrial environment and is developed as an industrial penetration test
Application Testing
Application testing is an in-depth analysis of a specific application or system, which can be customized to your needs. By performing an application test, an in-depth analysis of the chosen application or system will be carried out, and a report on the application's or system's security level, vulnerabilities, and risks will be compiled.
Hardware Assessment and Penetration Testing
IIOT and IOT devices often contain vulnerabilities that can be exploited. By conducting a hardware assessment of these embedded devices, you will gain a better overview and understanding of the existing vulnerabilities and thus be able to protect them more effectively. With a hardware assessment and penetration test of your hardware, you will be able to get detailed insight into the device's vulnerabilities and receive recommendations on how they can be protected.
Compliance
Many industrial companies and organizations are regulated, and therefore compliance is an important task for them. Egede provides compliance services within various legislations and standards such as NIS/NIS2, NERC CIP, and IEC62443. In our compliance model, there will also be recommendations for the task, often founded in technical solutions. In addition, there will be guidance on how to implement these solutions to comply with the specific regulations.
Architecture & Design
When renovating or building new, it is important not only to have a good network architecture and design but also a cybersecurity architecture and design tailored to industrial environments. Egede has extensive experience with cybersecurity architectures and designs. This applies not only to new production facilities but also to how one can develop a robust security architecture in older industrial environments, even when these use a "flat" network.
M&A Cybersecurity Assessment
If you are selling or buying an industrial environment, it is important that you have an understanding of the value of this environment. An M&A cybersecurity assessment will review and analyse the environment with a special focus on industrial cybersecurity, compliance with relevant regulations or standards, and international best practices in OT/ICS cybersecurity. All this will be summarized in a report written for management and in understandable business language.
Risk and Vulnerability Analyses
A risk and vulnerability analysis are an important element in good cybersecurity for both IT and OT, as one cannot ensure effective protection of components and systems without knowing their vulnerabilities. In our risk and vulnerability assessment, we will not only analyse vulnerabilities but also assess their relation to the systems and production and the potential risk that the components pose in relation to production, business, and society.
And there are more....
If the areas mentioned above do not quite fit your needs, do not despair. We are specialists in industrial cybersecurity and have extensive experience, so there may be other relevant areas that are not described here. You are always welcome to contact us at contact@egede.co.