MenĂĽ ĂĽberspringen
zurĂĽck

05. Jun 2025 | Press releases

CANCOM listed by the BSI for both APT response and IT Grundschutz protection

250605_020_bsi_zertifizierung_newsroom

  • CANCOM has been recognized by the BSI in Germany as a qualified Advanced Persistent Threats (APT) response service provider.
  • This makes CANCOM one of the few IT service providers in Germany to be listed in both the APT response and IT baseline protection/standard tool categories.
  • The BSI confirms the competence of CANCOM in handling complex security incidents and implementing regulatory requirements in a structured manner.

The German Federal Office for Information Security (BSI) has officially recognized CANCOM as a qualified APT response service provider. The listing is based on a complex, multi-stage testing procedure that tests specific requirements for dealing with complex cyber attacks. This makes CANCOM one of the few IT service provider in Germany that is listed by the BSI as both a qualified APT response service provider and with an IT Grundschutz protection/standard tool. In the area of APT response, CANCOM is represented by its Incident & Rapid Response Service, while its IT Grundschutz protection offering is represented by the CANCOM Compliance Suite – a tool officially listed by the BSI for the structured implementation of IT Grundschutz protection methodology. This dual recognition demonstrates the breadth of expertise and regulatory depth of the services offered.

Its inclusion in the BSI’s official list of qualified APT response service providers makes CANCOM the first port of call for companies and public authorities when responding to complex cyber-attacks. “We offer a more comprehensive range of services than many service providers in the security environment and demonstrate that we can measure ourselves against the strongest market players in a direct comparison. I would like to express my special thanks to all my colleagues who have made this success possible with their high level of expertise and close, interdisciplinary cooperation,“ says Alexander Ernst, Director Competence Center Network & Security at CANCOM. ”Our customers can therefore be confident that they are working with a leading security partner who can respond to cyber-attacks at the highest level and meets all requirements in terms of technical, organizational, and personnel capabilities.”

The number of targeted cyber-attacks on companies – known as advanced persistent threats (APT) – has risen significantly in recent years. According to the BSI State of IT Security Report 2024, operators of critical infrastructure in Germany were also affected on several occasions. In this context, the qualification of specialized service providers is becoming increasingly important. The CANCOM Cyber Defense Center provides comprehensive support to companies in strengthening their digital resilience – from risk identification and prevention to protective measures and recovery after an attack.

Review by the BSI

The qualification process involves the submission of detailed evidence and a technical discussion with the BSI, in which, among other things, the structured approach in realistic attack scenarios is evaluated.

The qualification covers numerous performance characteristics, including 24/7 availability, ISO 27001 certification, technical analysis and forensic expertise, as well as legal advice and crisis communication. The service portfolio also includes the implementation of recovery measures after incidents. According to the BSI’s published comparison, CANCOM meets almost all criteria in full.

The BSI list provides important guidance for companies and institutions that rely on fast, structured, and proven support in the event of a serious security incident. For customers, this means that certified teams of experts are available around the clock in an emergency, with proven methodologies and state-of-the-art technical equipment.

The complete list of APT response service providers qualified by the BSI and the criteria can be found on the BSI website.

About CANCOM

As a leading Digital Business Provider, CANCOM leads companies, organizations and the public sector into the digital future. The range of services and solutions includes classic system house IT solutions as well as data-based digital solutions, managed services and cloud services. We accompany the digital evolution of our customers with passion and technology and support them in reducing the complexity of their IT and developing new business models. We offer a holistic portfolio for all IT and business requirements.

The CANCOM Group’s offering comprises innovative solutions in the areas of Artificial Intelligence, Security & Network, Datacenter & Cloud, IoT Solutions and Modern Workplace and includes services for the entire IT lifecycle – from the provision of IT infrastructures, planning and integration, to support, managed services and XaaS. Customers benefit from the extensive expertise with which their diverse requirements are translated into concrete industry-specific IT solutions to significantly promote their business success.

The more than 5,600 employees of the internationally active CANCOM Group with around 80 locations in the DACH region, Belgium, Slovakia, Romania and the Czech Republic as well as an efficient partner network ensure market presence and customer proximity. The CANCOM Group is managed by RĂĽdiger Rath (CEO) and Thomas Stark (CFO). The company is headquartered in Munich. CANCOM generated annual revenue of around 1.7 billion euros in 2024. The Group parent company CANCOM SE is listed on the Frankfurt Stock Exchange in the TecDAX and SDAX (ISIN DE0005419105).