secunet Security Networks AG
About us
secunet is Germany’s leading cybersecurity company. In an increasingly connected world, the company’s combination of products and consulting assures resilient digital infrastructures and the utmost protection for data, applications and digital identities. secunet specialises in areas with unique security requirements – such as cloud, IIoT, eGovernment and eHealth. With security solutions from secunet, companies can maintain the highest security standards in digitisation projects and advance their digital transformation.
Over 1,000 experts strengthen the digital sovereignty of governments, businesses and society. secunet’s customers include federal ministries, more than 20 DAX-listed corporations as well as other national and international organisations. The company was established in 1997. It is listed in the SDAX of Deutsche Börse and generated revenue of around 406 million euros in 2024.
secunet is an IT security partner to the Federal Republic of Germany and a partner of the German Alliance for Cyber Security.
Products & services
secunet edge – The platform for digital applications in connected systems
To ensure that IT infrastructures in the OT environment operate seamlessly, a centralised, secure and practical platform is required – rather than numerous isolated individual solutions. secunet edge combines edge connectivity, local computing power and application operation in a shared endpoint for machines, systems and digital services. The platform is secure and ready for use, developed consistently according to the principle of ‘security by design’ and enables the central control and orchestration of distributed systems. Standardised interfaces, secure cloud connectivity and integrated management functions create the basis for data integration, remote access, remote maintenance and the reliable operation of digital applications. From development and rollout to ongoing operation, secunet edge makes industrial digitalisation projects reproducible, scalable and manageable – as a uniform infrastructure for networked production.
secunet eID PKI suite - Trusted identities for integrated industrial processes
To ensure the reliable operation of digital communication and machines in production and automation environments, the secunet eID PKI Suite provides secure identities and encrypted connections. The platform centrally and automatically manages certificates and keys for people, systems, and machines, guaranteeing authenticity, integrity, and confidentiality, and making digital processes tamper-proof. Standardized interfaces and flexible operating options—on-premise, in your own cloud, or as a managed service—enable a scalable, reproducible, and secure infrastructure. This makes networked production facilities, IoT devices, and control systems reliably orchestratable and trustworthy—a key building block for secure Industry 4.0 solutions.
Cyber Resilience Act – Secure product development compliant with the latest regulations
The Cyber Resilience Act sets binding requirements for products with digital elements – from secure development and vulnerability management to update capability and verification. secunet supports companies in implementing these requirements in a structured and practical manner. Based on a standardised catalogue of requirements, we analyse existing development and operational processes, identify regulatory gaps as part of a gap analysis, and develop specific, prioritised measures. Together, we establish a resilient secure development lifecycle with clear responsibilities, security by design principles, documented testing processes and effective vulnerability handling. This ensures that CRA compliance is not an isolated requirement, but rather a sustainable way to strengthen product quality, security and marketability.
The NIS 2 Directive – establishing governance and risk management that works
The NIS 2 Directive significantly increases the requirements for governance, risk management and verifiability of information security at company level. secunet supports organisations in the structurally guided implementation of regulatory requirements – from the analysis of existing security structures and the definition of clear roles and responsibilities to the implementation of effective management and control mechanisms. Based on established standards such as ISO/IEC 27001 or IEC 62443, we develop an integrated security concept that sensibly combines organisational measures, technical controls and documentation requirements. The result is more than just formally compliant: it is a resilient level of security, transparent decision-making processes and a resilient organisation that permanently meets regulatory requirements.
SINA – Secure communication and workplaces for industries
In modern manufacturing and automation environments, the requirements for security, confidentiality and integrity of digital data are increasing. SINA offers a comprehensive security architecture for industrial environments. The solution combines encrypted communication, secure workplace connectivity and centralised management to reliably protect both individual workstations and networked systems. Employees can access applications and control systems locally, on the move or remotely without compromising security. SINA helps companies ensure the confidentiality, integrity and availability of sensitive data, meet compliance requirements and also take into account VS-NfD-compliant security requirements. This makes secure communication, remote maintenance and data processing in Industry 4.0 scenarios manageable and practical.