Cybervize - Cybersecurity Beratung
Sector Coverage

Sectors the Cybervize platform runs in

Regulated industries with their own NIS-2, DORA or KRITIS exposure. Per sector: the relevant obligations and the matching Cybervize building block.

Covered sectors

Each sector has its own obligation profile (NIS-2 annex, DORA, TISAX, BSI, MDR, §75c SGB V). The Cybervize platform and the vCISO, interim CISO and assessment building blocks map these requirements.

Regulated · Finance

Financial services

Banks, insurers, payment service providers, BaFin-regulated entities. First-hand experience with MaRisk, BAIT, VAIT, DORA and Bundesbank IT supervision.

  • DORA
  • BAIT
  • VAIT
  • MaRisk
  • Bundesbank audit
NIS-2 and DORA for financial services
KRITIS · Chemicals

Chemicals and process industry

SEVESO/Major Accident obligations on top of NIS-2 Annex I. OT security in plants, supply chains and safety-security convergence.

  • NIS-2 Annex I
  • SEVESO
  • OT Security
NIS-2 for chemicals
Production · Food

Food and beverage

IFS Food, FSSC 22000, cold-chain requirements, NIS-2 Annex II for larger production sites. Platform building blocks for multi-site operations.

  • IFS
  • FSSC 22000
  • NIS-2 Annex II
NIS-2 for food and beverage
KRITIS · Energy

Energy and grids

Electricity, gas, heat and hydrogen utilities in KRITIS scope. NIS-2 Annex I, B3S Energy, IT-Sicherheitskatalog (electricity/gas) and BSI IT-Grundschutz. Per-site OT maturity becomes comparable through the platform.

  • NIS-2 Annex I
  • KRITIS
  • B3S Energy
  • IT-Sicherheitskatalog
NIS-2 for energy
Industry · Machinery

Mechanical engineering and industrial goods

Classic mid-market sectors with OT/IT convergence in production, supply-chain pressure from enterprise audits and rising threat exposure. NIS-2 Annex II plus Cyber Resilience Act for connected products.

  • NIS-2 Annex II
  • OT/IT convergence
  • CRA
  • ISO 27001
NIS-2 for mechanical engineering
Tech · MSP

IT service providers and MSPs

Managed service providers and IT firms are themselves in NIS-2 Annex II scope and at the same time suppliers to their clients. Multi-tenant platform use is supported.

  • NIS-2 Annex II
  • MSP
  • Multi-tenant
NIS-2 for IT service providers
Regulated · Public

Public sector

Federal agencies, state authorities, municipal bodies and public enterprises. Experience with highly confidential projects, ISO and NIST and BSI IT-Grundschutz.

  • BSI Grundschutz
  • ISO 27001
  • NIST
Book a cybersecurity assessment
Industry · Automotive

Automotive and suppliers

OEMs, Tier-1 and Tier-2 suppliers with TISAX requirements (contractual, not statutory), OT/IT convergence in production and supply-chain risk management under NIS-2 and ISO 27001. UN R155/R156 for type-approval relevant vehicle topics.

  • TISAX
  • NIS-2
  • UN R155
  • Supply chain
NIS-2 for automotive
KRITIS · Health

Healthcare

Hospitals, MVZ groups, medical device manufacturers and health-IT providers. NIS-2 Annex I for KRITIS hospitals, §75c SGB V, MDR cybersecurity requirements and B3S medical care.

  • NIS-2 Annex I
  • §75c SGB V
  • MDR
  • B3S Med
NIS-2 for healthcare
Regulated · Defense

Defense and security-critical suppliers

Defense companies and security-critical suppliers. VS-NfD experience, ISO 27001, ITAR/EAR-aware supply-chain work.

  • VS-NfD
  • ISO 27001
  • Supply chain
Book a cybersecurity assessment

Memberships, programmes and partnerships

  • BSI Allianz für Cyber-Sicherheit
  • CISPA Helmholtz-Zentrum für Informationssicherheit
  • TeleTrusT - Bundesverband IT-Sicherheit
  • IT Security Made in Germany - TeleTrusT

Your sector not listed? Get in touch.

Book a NIS-2 risk check