Cybersecurity: Monitoring and incident management

• Product Security Incident Response Service (PSIRT)
• Independent security assessment: quality certification for IT security
• Continuous competence and awareness training
• PKI management and hosting

Our PSIRT service supports you in responding quickly and in a structured manner to reported security incidents and vulnerabilities in your products – throughout the entire product lifecycle. We take care of monitoring, analysis, evaluation, coordination and communication of appropriate measures for you. This not only enables you to meet regulatory requirements, but also strengthens your customers' confidence in the security of your products. Depending on your needs, we offer various service level agreements (SLAs) – from basic monitoring to prioritised response with defined response times.

We offer tailor-made services – precisely tailored to the requirements and needs of your project. Even outside our service packages.

In view of requirements such as the Cyber Resilience Act or specifications by EU notified bodies, traceable security assessments are becoming increasingly important. NewTec carries out structured IT security assessments in accordance with international standards such as IEC 62443, ISO/IEC 21434 and IEC 81001. The result is a robust certificate that serves as independent proof of a product's technical IT security and supports approvals, customer requirements and audits.

Send us an email for more information.

Regulations such as the Cyber Resilience Act (CRA), NIS2 and IEC 62443 explicitly require proof of qualified specialists in the field of security engineering. Companies must document that their employees have the necessary expertise to correctly implement security requirements.

We support you in this with a structured training programme that is specifically tailored to technical target groups:

• Regular webinars and training courses on current standards, legal requirements and best practices (e.g. CRA, Secure Development Lifecycle, IEC 62443)
• Target group-specific training courses for development, product management or purchasing
• Provision of training materials and checklists
• Documentation of all training measures for verification by auditors or authorities

This enables you to meet regulatory requirements while strengthening the security expertise of your teams – sustainably and verifiably.

Click here for our training catalogue.

We offer a powerful toolchain for the central management of a product-related public key infrastructure (PKI) – designed to meet the requirements of industrial and networked products. You benefit from secure certificate management, digital device identity and encrypted communication – compliant with IEC 62443, EN 18031, CRA and NIS2.
Our solution meets key requirements from current standards and laws. It helps you to prove the authenticity, integrity and trustworthiness of your products in an auditable manner – without any infrastructure or operating costs on your part.

Overview of services:

• Provision and operation of a complete X.509 certificate infrastructure (root CA, OCSP, CRL)
• Certificate management toolchain for issuance, renewal and revocation
• Multi-client solution, hosted in KRITIS-compliant data centres in Germany
• Technical & organisational integration into OT and product environments
• Optional: connection to IAM/security platforms (e.g. access control, signature verification)

With our offering, you can lay the foundation for secure communication, software authenticity and regulatory compliance – ready to use, scalable and future-proof.

Arrange an initial consultation with our experts now...