conova meets all cybersecurity requirements

Cyber-attacks and IT threats usually cause major financial damage to companies, which is why security and the latest IT standards are our top priority.

Our Cyber Trust Austria Label in silver meets all requirements for cyber security based on the Cyber Risk Rating Schema, which was developed by the Competence Center for Secure Austria in cooperation with KSV1870.

This includes all applicable NIS 2 guidelines as well as the requirements for effective management of our suppliers and company-related cybersecurity.

This quality label gives our clients and suppliers the necessary security and certainty that we operate our data centers using the latest technology and are a reliable partner. We fully comply with the applicable NIS 2 guidelines and requirements for effective management of our suppliers and corporate cybersecurity. A detailed list of the NIS 2 requirements can be found in the Cyber Trust Austria white paper.

In addition to issues such as risk management and governance, supply chain security, incident reporting and much more, it also includes the following security requirements and measures:

• Concepts related to risk analysis and information systems security
• Processes for dealing with security incidents
• Business continuity measures such as backup management and disaster recovery as well as crisis management
• Supply chain security measures, including security-related aspects of the relationships between companies and their service providers
• Security measures when acquiring, developing and maintaining network and information systems, including management and disclosure of vulnerabilities

• Concepts and procedures that aid in the evaluation of effectiveness of cybersecurity risk management measures
• Basic cyber hygiene practices and cyber security training
• Concepts and procedures for the use of cryptography as well as, where appropriate, encryption
• Personnel safety, access control concepts and facility management
• Use of multi-factor authentication or continuous authentication solutions, secure voice, video and text communications, and, where appropriate, secure emergency communication systems within the facility

Our company, with data centers in Salzburg-Maxglan and Hallein, is ISO 27001 certified and thereby meets the leading international quality standard for information security. All of our data centers are additionally EN 50600 certified and thus also comply with the European standard for the construction and operation of data centers.