Free trial Request quote Contact me

Energy companies

We help your energy company meet new cyber security challenges

In August 2018, a new and important legislation came into force based on the EU-directive NIS (Network and Information Security). The law pushes high demands on IT security for energy companies. Lack of compliance can lead to serious consequences for companies, for example getting withdrawn of the market. This means that vulnerability assessment becomes more or less a requirement. This new legislation is placed on top of the data protection regulation (GDPR) which also places increased demands on IT security.

Holm Security VMP helps your energy company take control of the IT-security and understand how vulnerable you are to threats today and in the future. We provide you with all the information you need to remedy vulnerabilities and strengthen your IT-security.

Big within the energy sector

Holm Security is one of Europe’s largest supplier of automated and continuous vulnerability assessment for energy companies. It gives us great experience and understanding of your particular challenge. See some examples of energy companies that we work with today here.

NIS - requirements for systematic IT security work

The NIS directive demands that all organizations that carry out services that are crucial for the society, such as energy supply, must be able to prove that they work in a systematic, structured and continuous way with the security in their IT environment. The background of this NIS directive is the increased threat for all types of organizations - not least from foreign powers.

Foreign powers - a growing threat

Foreign powers accounted for millions of attacks against organizations in Europe 2018. The goal with these attacks could be industrial espionage, sabotage or use of hacked computers to attack other targets. For energy companies the main risk is considered to be sabotage of the energy network.

Data Protection Regulation (GDPR) - protect personal data

The new data protection regulation is intended to strengthen the protection of the individual by imposing higher demands on the person who registers or processes personal data. Not least, good safety must be provided to protect against data leaks. Should a leak occur, this must be reported, which means that safety deficiencies can be very costly. Organizations that do not comply with the EU's new personal data law, may receive a substantial fine of up to 4 % of the company's global turnover.