Zum Hauptinhalt springen

Digital resilience for SMEs

Request a consultation

Your sparring partner for all IT security issues

Whether accounting, insurance or marketing – most companies have employees or partners for the most important areas. But who takes care of IT security? It is often the system administrator or an IT service provider who ensures operations. But operation alone does not protect against attacks.

You can compare it to a car repair shop: they fit the tires, check the oil level and make sure the car runs – they don’t check the safety on the road. That’s what the main inspection at an inspection company is for. We take over this part of IT security for you: we check how well your systems are really protected, identify weak points and take long-term responsibility for your security management as an external ISB.

Known from

When IT security gets lost in day-to-day business

*]:pointer-events-auto R6Vx5W_threadScrollVars scroll-mb-[calc(var(–scroll-root-safe-area-inset-bottom,0px)+var(–thread-response-height))] scroll-mt-(–header-height)” dir=”auto” data-turn-id=”e48669d7-1866-4db0-9338-5c9526fdad3e” data-turn-id-container=”e48669d7-1866-4db0-9338-5c9526fdad3e” data-testid=”conversation-turn-57″ data-scroll-anchor=”false” data-turn=”user”>

*]:pointer-events-auto [content-visibility:auto] supports-[content-visibility:auto]:[contain-intrinsic-size:auto_100lvh] R6Vx5W_threadScrollVars scroll-mb-[calc(var(–scroll-root-safe-area-inset-bottom,0px)+var(–thread-response-height))] scroll-mt-[calc(var(–header-height)+min(200px,max(70px,20svh)))]” dir=”auto” data-turn-id=”request-WEB:a6648dd1-13ce-4dd3-b4da-450d1a01086c-28″ data-turn-id-container=”request-WEB:a6648dd1-13ce-4dd3-b4da-450d1a01086c-28″ data-testid=”conversation-turn-58″ data-scroll-anchor=”false” data-turn=”assistant”>

*]:pointer-events-auto R6Vx5W_threadScrollVars scroll-mb-[calc(var(–scroll-root-safe-area-inset-bottom,0px)+var(–thread-response-height))] scroll-mt-(–header-height)” dir=”auto” data-turn-id=”4e7c0ddd-21e0-4833-a7b6-67babe704653″ data-turn-id-container=”4e7c0ddd-21e0-4833-a7b6-67babe704653″ data-testid=”conversation-turn-63″ data-scroll-anchor=”false” data-turn=”user”>

Companies with their own IT department face the challenge of ensuring operational stability and information security at the same time. While day-to-day operations are dominated by support requests, system operation and user problems, IT security, architecture and compliance requirements are constantly increasing.
*]:pointer-events-auto [content-visibility:auto] supports-[content-visibility:auto]:[contain-intrinsic-size:auto_100lvh] R6Vx5W_threadScrollVars scroll-mb-[calc(var(–scroll-root-safe-area-inset-bottom,0px)+var(–thread-response-height))] scroll-mt-[calc(var(–header-height)+min(200px,max(70px,20svh)))]” dir=”auto” data-turn-id=”request-WEB:a6648dd1-13ce-4dd3-b4da-450d1a01086c-31″ data-turn-id-container=”request-WEB:a6648dd1-13ce-4dd3-b4da-450d1a01086c-31″ data-testid=”conversation-turn-64″ data-scroll-anchor=”false” data-turn=”assistant”>

We support internal IT teams as a technical and strategic sparring partner. Depending on requirements, we work selectively on specific issues or take on complex security areas such as architecture, penetration tests or governance on a permanent basis. This creates additional expertise without permanently tying up internal resources.

We work exclusively with permanently employed experts who have many years of practical experience in demanding IT and security environments. The focus is on solutions that are not only technically sound, but also fit into existing structures in an economically sensible way and actually work in day-to-day operations.

For companies that do not have their own security experts

Many organizations operate their IT via external service providers or with small internal teams without in-depth security expertise. The focus is usually on operation, availability and support. Security architecture, current threat situations and complex risk decisions are often only partially covered.

The responsibility nevertheless remains within the company and is therefore also a relevant liability issue for management and directors.

We complement these structures as an independent cybersecurity sparring partner. We review architectures, evaluate security concepts and take on operational security tasks if required. In this way, we create transparency in complex IT landscapes and translate technical risks into a clear basis for decision-making.

We bring structure to areas where there is often only fragmented knowledge internally or where external service providers do not have full responsibility for security. 

You are in good hands with us:

Penetration test: Determining the IT security situation

from € 5,900

We identify weaknesses in your IT before a real attacker can exploit them. We check how well your systems are protected, how vulnerable they are and how far an attacker could penetrate. You receive a management report as well as clear, technical recommendations for action to close the security gaps in a targeted manner.

 
Make an appointment

Workshop: Further developing IT security

from € 6,300

We analyze the current status of your IT security and identify specific potential for optimization. Together, we develop a roadmap with clear short and long-term measures. For the management, we offer transparency on liability risks and control instruments to strategically manage cybersecurity and minimize the CEO liability risk. Your IT department receives practical, technically feasible recommendations that improve protective measures, close security gaps and sustainably increase the resilience of your systems.

 

 
Make an appointment

Long-term IT security sparring partner

from € 10,200 per year

As your external information security officer (ISO), we take responsibility for your information security. We take care of vulnerability management, risk analyses, training, GDPR and compliance issues, phishing simulations and regular penetration tests – all with a practical focus and in-depth expertise.

You benefit from clear responsibility, IT security that is practiced in the company, reduce the liability risk of the management and are less expensive than with an internal employee.

 
Make an appointment

Prices apply from the amount stated in each case plus the applicable statutory VAT. The individual requirements and the size and complexity of the respective IT infrastructure are decisive for the final pricing. Deviations from this can lead to correspondingly adjusted total costs.

That is why cybersecurity is indispensable:

Protection against financial losses

Cyber attacks can cause production downtime, data loss or ransomware damage – investments in IT security prevent high costs and economic damage.

Securing customer data and trust

Data protection violations not only damage your reputation, but can also lead to high fines under the GDPR. In concrete terms, this means: up to 4% of global annual turnover  

Compliance with legal and regulatory requirements

Companies must comply with industry-specific standards and legal regulations such as the GDPR or NIS-2 – IT security is central to this.

Reduction of liability risks for management

CEOs and managing directors can be held personally liable if security gaps lead to damage or data protection breaches. IT security measures significantly reduce this risk.

Attackers with AI and motivation

Cyber criminals use AI and automated tools to specifically exploit vulnerabilities. Even a small ransom can be worth a lot to them – they are more technically savvy, more motivated and often one step ahead of us.

Early detection and defense against attacks

With penetration tests, vulnerability management and continuous monitoring, threats are detected before they cause damage.

 Learn more about pentests
„An IT system house or an internal system administrator takes care of operations - but not automatically IT security. Detecting attacks, assessing risks and securing vulnerabilities requires specialized expertise. We are your holistic partner for all IT security issues. “
S. Philipp Kalweit
CEO, Director Strategy & Consulting

A successful cyber attack has serious consequences

A successful cyber attack
has serious consequences

Today, every company is aware of the threat of cyber attacks – after all, almost everyone knows a business partner who has already been affected. But how well protected is your own company really? And who bears the long-term responsibility for IT security?

Request a consultation

Your contact persons

Security is a matter of trust. With us, you don't talk to a ticket system - you talk directly to experienced experts.

S. Philipp Kalweit is Director Strategy & Consulting with a focus on security awareness and offensive IT auditing. He has been advising SMEs and corporations for nine years, particularly in highly regulated industries. In 2019, he was honored by DIE ZEIT as “Hamburger of the Month” and included in the Forbes 30 under 30 DACH list.

S. Philipp Kalweit

Managing Partner

+49 40 285 301 257
hello@kalwe.it

Dipl.-Wirtsch.-Ing. Günther Paprocki is Managing Partner of KALWEIT ITS. As Director HR & Operations, he is responsible for operations and personnel. With experience from previous positions at Sharp, Philips and Cisco, he brings a breath of fresh air to the consultancy. His focus: strengthening cybersecurity in Germany.

Günther Paprocki

Managing Partner

+49 40 285 301 258
hello@kalwe.it

Newsletter

Once a month. For CISOs, IT managers and decision-makers who want to know where real risks lurk - and how to counter them.
Receive newsletter