Security above all

Through organisational and technical measures, as well as the constant monitoring of infrastructure, processes, products and employees from the perspective of information security, we keep the highest possible level of security.

This is evident with the number of certifications we hold:

• ISO 27001 for information security management systems for the complete business unit |”KISTERScloud Services“ (all aspects of KISTERScloud Services, from the technical infrastructure, through the operational processes to the employees), for the support of the business units Energy, Water, Monitoring, EHS, and for the software development of the business units Energy and Water
• BSI TR-03109-6 for the SaaS solution for smart meter gateway administration. This allows an official use of the system for measuring point operators.
• TÜV TSI certification for the KISTERS Data Center located in our main headquarters in Aachen, Germany

In our state-of-the-art certified data center in Aachen, Germany, we operate both our own IT and the SaaS solutions for our customers. Maximum security is required here. To keep your information secure and accessible, we implement a comprehensive security policy that includes:

• Physical security in the KISTERS Data Center
• Secure, high-performance access via the internet
• Modern storage and high availability concept

In the development of our software solutions, we are guided by the Secure Software Development Lifecycle (S-SDLC) and relevant “best practices” (BSI, NIST, OWASP, etc.). This means that we consider the security of a product from the conception to its delivery and on-going maintenance. This is confirmed by corresponding extensions of the ISO 27001 certification.

According to these security standards, we write secure code, avoid typical vulnerabilities during coding, perform code reviews with a security focus, and also test our software under stress conditions. Through these diligent processes, we provide you with reliable software solutions that are safe and secure.

KISTERS as an IT service provider, hosts and manages the software in the certified KISTERS Data Center and assumes responsibility for the IT infrastructure. Our experts especially take care of security, maintenance and updates (software and hardware) in order to keep the services up-to-date.

Your benefits with KISTERScloud:

• More time to focus on your core business processes
• State-of-the-art high-availability systems at manageable costs
• No expensive infrastructure and skilled personnel required to administer and update the software
• No time spent on administration of your IT infrastructure
• Quick access over the Internet
• Efficient IT support for your business processes

Our support for the Energy, HydroMet and EHS business units is compliant with the ISO/IEC 27001 standard. Our employees receive regular training and we use a secure customer service desk for your support requests.

To co-ordinate the implementation, continuous improvement and documentation of all of the measures described above, we have created a staff position “Head of Information Security”. Along with The Chief Information Security Officer (CISO) and Data Protection Officer (DPO), they work closely with the teams responsible for the KISTERS infrastructure and product development to enable us to provide the highest level of security to our customers and partners.