28. August 2018 · Press Releases

CANCOM Pironet as the first German multi-cloud provider from the SME sector to be certified in accordance with the BSI’s C5 test catalog

One of the most demanding testing standards for information security and compliance is the C5 test catalog (C5 stands for Cloud Computing Compliance Controls Catalogue) of the German Federal Office for Information Security, or BSI for short. These C5 requirements were specifically geared to cloud providers by the BSI experts. CANCOM Pironet has now become the first German multi-cloud provider from the SME sector to be successfully certified according to the BSI's C5 requirements (Type 1 testing). The certificate was issued by auditors from Ebner Stolz following an intensive review of all relevant processes and internal regulations at CANCOM Pironet. Ebner Stolz is one of the largest independent medium-sized auditing and consulting firms in Germany and is one of the top ten in the industry.


Cloud services rather only from C5-tested providers!

The C5 catalog defined by the BSI covers all areas that contain information security issues: From secure handling of data carriers to security checks of employees assigned to critical tasks to the encryption of network connections. In Germany, the C5 test certificate is also particularly relevant because government agencies and other federal institutions may only use cloud services if the cloud provider meets at least the basic requirements of the C5 test catalog and has proven this by means of a test certificate.


"Today, every decision-maker must be aware that cyber threats are constantly growing and that appropriate prevention is necessary to minimize the risk of business-critical outages and impairments," notes Frank Richter, CANCOM Pironet Executive Board member, and continues: "That's why we advise all companies and organizations, as a matter of principle, to only book cloud services from providers that, like CANCOM Pironet, comply with the central C5 conditions and can present a certificate from independent auditors about them."


Information security and business governance are a priority

From Marcel Reifenberger perspective, Chief Security Officer (CSO) of the CANCOM Group, there are numerous companies for which the new C5 test certificate brings benefits: "Every CANCOM customer who obtains managed cloud services from CANCOM Pironet's high-availability data centers and has personal data processed by customers or employees will benefit. This is another example of the importance attached to information security and compliance within the CANCOM Group - as can be seen from the wide range of demanding test certificates and certifications such as C5, ISO 27001 or ISAE 3402."


Arne Schönbohm, President of the German Federal Office for Information Security, expressly welcomes the fact that the number of cloud services with C5 certification available on the German market is constantly growing: "The C5 requirements catalog has become the industry standard for a secure cloud. We are pleased that secure cloud offerings that meet the requirements of the C5 catalog are now also available on the market from the German IT industry," explains the BSI President, adding: "This shows that we in Germany have distinctive expertise in the area of information security and that, in addition to global corporations, small and medium-sized enterprises can also offer secure digital products. We must continue along this path in order to be able to continue to shape digitization securely in the future."


More information about the C5 test on the BSI website: www.bsi.bund.de/c5


As a Digital Transformation Partner, CANCOM accompanies organizations into the digital future. We support our customers to simplify complex enterprise IT and increase their business success through the implementation of modern technology. In order to comprehensively meet the IT needs of companies, organizations, and the public sector, CANCOM delivers tailor-made IT end to end from a single source.

The CANCOM Group’s range of IT solutions includes consulting, implementation, services, and the operation of IT systems. Customers benefit from the extensive expertise as well as a holistic and innovative portfolio that covers the IT requirements that are necessary for a successful digital transformation. As a hybrid IT integrator and service provider, we provide an integrated range of services and solutions including business solutions and managed services, such as cloud computing, analytics, enterprise mobility, IT security, hosting, and as-a-service offerings.

With around 4,000 employees worldwide, the internationally active CANCOM Group and its efficient partner network ensure market presence and customer proximity with locations in Germany, Austria, Switzerland, Belgium and Slovakia. The CANCOM Group is led by Rüdiger Rath (CEO) and Thomas Stark (CFO). The company is headquartered in Munich. CANCOM has an annual turnover of around 1.3 billion euros (consolidated revenue 2021). The parent company, CANCOM SE, is listed on the TecDAX and SDAX of the Frankfurt Stock Exchange (ISIN DE0005419105).