Self Check

Security Self Check

Questionnaire and Calculations

Welcome to your NIS2 Cyber Security Evaluation Report, presented by konzeptplus ag. This report is generated by our advanced NIS2 Evaluation Tool, designed to offer comprehensive insights into cyber security best practices. Covering a range of factors from product and protocol analysis to CISA statistics and risk exposure, our tool delivers a detailed evaluation to enhance your cybersecurity strategies.

Please select your most appropriate jurisdiction and currency

Please select the most appropriate sector that reflects the main activity of your business

What is your average revenue per year?

What type of business do you operate?

Are you currenty implementing a cloud strategy?

Do you operate smart devices such smart TVs, IoT devices, remote sensors?

Do your employees work in a hybrid (home/office) mode?

In addition to the sectors mentioned above, does your company hold any sensitive information that needs to be especially protected?

Is your company required to operate a whistleblower or similar process?

Is your company under special regulatory obligations that are not covered by the sectors above?

Critical applications

A critical application in information technology is a software or system crucial for an organization's functionality, security, or efficiency. These applications are vital for maintaining key business or operational processes. Key characteristics include high availability, strong security, efficient performance, and reliable support. Examples include healthcare systems, online banking platforms, telecommunication networks, and industrial automation systems. Failures in these applications can lead to serious consequences, such as financial loss and safety risks.

I have already

My goal

Select Your Security Level

	Level 1	Level 2	Level 3
Identity Management	Multifactor Authenitication using PIV (Smartcard) and/or FIDO2 Self service and/or managed identity provisioning	Signins and Private Key Infrastructure Zero Trust Certificate Management System with HSM Identity Provisioning	Artificial intelligence monitoring of authentication
Access Management	Role-based validation/authorisation Use of PIV (Smartcard) and/or FIDO2	attribute based access management Single Sign On (SSO) managed Identity Provision Token-based API-security	No additional best practices
Security & Firewalls	Malware / ransomware / virus detection External access only over proxy Access only to needed ports and routes	AI - based ransomware detection and antivirus tools	High availability networks with segregation
Monitoring	Analytics and surveilance of hardware und logins Darkweb monitoring of domain and emails subversive activities (Know your business; KYB)	Darkweb monitoring of customer and management subversive activities (Know your customer - KYC; Know your management; KYM) Zero Trust Triple monitoring AI-Based anomaly detection (Network monitor is externally monitored, which is also monitored)	Darkweb Monitoring Darkweb monitoring of employee subversive activities (Know your Employee - KYE)
Communications	Secure Chat (intern and Ext.) Secure Mail Secure Conference	Channel independent CI/ CD and event-based solutions. Encrpyted and secured datamanagement Verified users trusted signature class 2	Zero-Trust with FIDO2 ID-Validations AI-monitored interactions Validated but anonymous secure communication
Transactions	SSL	Tokenbased / zero trust end to end secured transactions	AI-monitored transactions
Data Security	Backup according to 321/322 rule (3 data copies, of which 1 production, 2 different media, 1 offsite or 1 offsite & 1 in cloud) Encrypted backups	Encryption of data at rest Mulilayer encryption	AI digital fingerprinting of data
Collaboration	Rolebased access to data and applications.	Zero Trust with IAM and API-Tokens	AI-monitored collaboration
Compliance	Compliant data - archiving policies DSG adherence Implemented technical and organisational measures	Whistleblowing functionality Secure and compliance customer / partner communications	No additional best practices

Not all infos to show Chart

Level 1

Level 2

Level 3

Identity Management

Access monitoring

Access Management

Access monitoring

FIDO 2 Token

OTP

TOTP

U2F

Security & Firewalls

Access monitoring

Monitoring

Access monitoring

Communications

Transactions

SNMP

Data Security

Collaboration

Compliance

Identity Management

Federated ID Management

Secure Encryption

Full Access Monitoring

PKI Zertifikate

System Monitoring

Access Management

Single Sign On

Federated ID Management

Full Access Monitoring

MFA

Pass Key

PKI Zertifikate

Security & Firewalls

Federated ID Management

Secure Encryption

Full Access Monitoring

Monitoring

Full Access Monitoring

System Monitoring

Communications

Signing/Electronic Signature

Secure Compliant Video Conferences/Transcripts

Protected Storage

Secure Encryption

Full Access Monitoring

MFA

Pass Key

System Monitoring

OpenPGP

Transactions

Signing/Electronic Signature

Protected Storage

Secure Encryption

Full Access Monitoring

Data Security

Signing/Electronic Signature

Protected Storage

Secure Encryption

Full Access Monitoring

PKI Zertifikate

Collaboration

Signing/Electronic Signature

Secure Compliant Video Conferences/Transcripts

Protected Storage

Secure Encryption

MFA

OpenPGP

Compliance

Signing/Electronic Signature

Secure Compliant Video Conferences/Transcripts

Protected Storage

Secure Encryption

Full Access Monitoring

MFA

System Monitoring

Identity Management

AI Authentication Anomaly Monitoring

Authentication (Authorisation ABAC/RBAC)

Risk Engine, Integrity Scan, Dark Web

AI Pattern-based monitoring

Access Management

AI Authentication Anomaly Monitoring

Authentication (Authorisation ABAC/RBAC)

AI Pattern-based monitoring

Anomaly spotting

Security & Firewalls

AI Authentication Anomaly Monitoring

AI Pattern-based monitoring

Monitoring

AI Authentication Anomaly Monitoring

Risk Engine, Integrity Scan, Dark Web

AI Pattern-based monitoring

Anomaly spotting

Communications

Secure & Compliant Sharing

Open Secure Collaboration

Fraud, AML, KYC, Risk

AI Pattern-based monitoring

Transactions

AI Authentication Anomaly Monitoring

Secure & Compliant Sharing

Open Secure Collaboration

AI Pattern-based monitoring

Data Security

AI Authentication Anomaly Monitoring

Secure & Compliant Sharing

AI Pattern-based monitoring

Anomaly spotting

Collaboration

Secure & Compliant Sharing

Open Secure Collaboration

Risk Engine, Integrity Scan, Dark Web

AI Pattern-based monitoring

Compliance

Secure & Compliant Sharing

Open Secure Collaboration

Risk Engine, Integrity Scan, Dark Web

Fraud, AML, KYC, Risk

AI Pattern-based monitoring

Volumetrics

The Questions in this section will alow as to caluclate the Price of the Products acording to the size of your Company

How many locations do you have?

How many of the following type of IT users do you have:

This has an impact on the licencing of the various products, as well as the suitability of specific identity measures for specific user groups.

Office workers / Administrators

Factory or other type of dedicated IT equipment workers

Drivers or other mobile workers

Other Workers

How many IT / Data Centres do you have?

How many business critical applications do you operate?

Contact

Here you can set the information under which we can contact you

Company name

Phone

Zip

City

Country

State

Firstname

Lastname

Position

E-Mail

Comment

Do you wish to be Contacted?

No Yes

GDPR

We appreciate your engagement with our Evaluation Tool, designed to provide you with a comprehensive analysis tailored to your unique requirements. Your commitment to excellence is evident, and we want to ensure that your experience is nothing short of exceptional.

By selecting the Commit and Calculate button, you initiate a sophisticated process that not only computes precise calculations but also furnishes you with detailed statistics through our cutting-edge Evaluation Tool. This information serves as a strategic compass, guiding your decisions towards optimal outcomes.

Should you contemplate a shift in your product preference for achieving the pinnacle of success at your LEVEL, feel free to revisit and modify your responses. Your commitment to excellence warrants the flexibility to align with your evolving objectives.

In addition to the insightful results, our platform offers you the capability to immortalize your achievements in a tangible format. By selecting the Create PDF option, a bespoke document encapsulating your results will be generated. To access this personalized report, you will be provided with a unique token, ensuring the security and exclusivity of your confidential information.

Your journey towards success is not only marked by commitment but also by informed choices. Click, commit, calculate, and elevate your trajectory with our sophisticated Evaluation Tool.

Cost indicator

Risk and Exposure Parameters

Total Exposure

Annual Exposure

Percent of Turnover

Probability of Attack

Probability of Breach

Impact Breach

Ransom

Ransom Probability

Ransom Exposure

Potential Fine

Fines Exposure

Passwordless Benefits

Business Case: Investment versus direct financial benefits

Estimated Median Initial Investment

Estimated Median Annual Recurring Cost

Total Investment

Annual recurring benefits

Net Income/Outgoing Annual

Total Net I/O over 3 Years Total

Net Present Value

ROI Return on Investment (3 Years)

Security Self Check

Level 1

Level 2

Level 3

Level 1

Level 2

Level 3

Level 1

Level 2

Level 3

Level 1

Level 2

Level 3

Level 1

Level 2

Level 3

Level 1

Level 2

Level 3

Level 1

Level 2

Level 3

Level 1

Level 2

Level 3

Level 1

Level 2

Level 3

How many of the following type of IT users do you have:

Products

Best Practice

Protocols

Support

Legal & Compliance