Protection of critical infrastructure with the implementation of the KRITIS umbrella law

You are currently viewing a placeholder content from YouTube. To access the actual content, click the button below. Please note that doing so will share data with third-party providers.

More Information
Unblock content Accept required service and unblock content

As threats keep growing, protecting our essential supply structures by implementing the KRITIS Umbrella Act is more important than ever. The KRITIS Umbrella Act offers comprehensive solutions to make sure critical infrastructure in Germany is properly protected. Whether it’s energy, gas, water, chemicals, or health, our customised approaches reliably protect operators of critical infrastructure.

Learn how you can future-proof your systems. With practical and independent solutions for implementing the CER Directive and the draft KRITIS umbrella law, we offer you the expertise you need to meet the requirements of the KRITIS Regulation.

Customised solutions for individual KRITIS requirements – whether you are an operator of critical infrastructure or critical facilities

We offer suitable solutions for all operators of critical infrastructure and KRITIS-relevant facilities. We have practical experience in implementing KRITIS requirements in all KRITIS sectors and industries – from critical infrastructure energy supply and hospitals to healthcare, railways and other means of transport as critical infrastructure.

We offer comprehensive and independent consultation and support on all requirements of the CER Directive and the draft KRITIS umbrella law:

  • Protection of staff working in critical infrastructure
  • Training and further training for critical infrastructure employees
  • Securing the operation of critical infrastructure with the help of our BCM tool
  • Physical protection of critical infrastructure thanks to our customised security concepts
  • Improve resilience through our crisis team exercises and our script tool
  • KRITIS thresholds
  • Mandatory reporting requirements for KRITIS to KRITIS authorities
  • Risk analysis according to BSI standard 200-3 based on our risk analysis Excel template
  • KRITIS requirements according to the current state of the KRITIS umbrella law
Four people in business attire sit around a rectangular wooden table in a modern office, viewed from above, discussing KRITIS implementation. The table holds notebooks, drinks, coffee cups, a potted plant, and bottled water.

Professional implementation of a risk analysis in accordance with §12 KRITIS umbrella law by experienced experts with a hands-on approach

Protect your KRITIS company effectively with a risk analysis in accordance with § 12 KRITIS umbrella law! Use our comprehensive risk analysis Excel template in compliance with BSI Standard 200-3 to identify potential threats and respond to them strategically. Learn how you can increase your security level and protect your infrastructure with the basic protection risk analysis. Be inspired by a risk analysis example and implement measures to secure critical infrastructures.

Why choose 3-core?

We are a specialist management consultancy for business continuity management, crisis management and resilience management. Our tools and consulting services are based on practical experience and tailor-made concepts.

Four people in business attire are gathered around a conference table, looking at a laptop. They appear engaged in discussion, possibly strategizing the implementation of the KRITIS umbrella law for critical infrastructure in a modern office setting.

Strengthening resilience in accordance with §13 KRITIS umbrella law - adapting to changing threats

In a world where threats are constantly changing, it is essential to strengthen the resilience of your systems. Our solution helps you develop and adapt protective measures against critical infrastructure threats. Whether in critical industries or critical infrastructure-related facilities, we offer customised strategies to strengthen your resilience. Use resilience assets and exercises to continuously improve your resilience.

Frequently asked questions about the KRITIS umbrella law

The KRITIS umbrella law is the national implementation of the European CER Directive on the protection of critical infrastructures. It brings together overarching measures on resilience, risk analysis and security for operators of critical infrastructures. It is expected to come into force in 2026.

The implementation affects operators of critical infrastructures in all industries and sectors (e.g. energy, water, health, transport) that are subject to the new thresholds and reporting requirements. Companies with KRITIS-relevant facilities also benefit from early preparation. Not sure whether you are affected? Take the free quick check.

Quick-Check

With our professional and independent advice, we will get you ready to go. Based on our many years of professional experience, we work with you to implement the requirements of the KRITIS Umbrella Act tailored to your company – including risk analysis in accordance with §12 KRITIS Umbrella Act, resilience plan in accordance with §13 KRITIS Umbrella Act, BCM in accordance with BSI Standard 200-4, training and awareness-raising for your staff, and crisis team exercises to strengthen resilience.

We'll get you ready to go in a 30-minute turbo kick-off session.

Fill out the form – you will receive a free introduction to our Crisis Management tool.

Four people in business attire are discussing in front of a whiteboard covered with colorful sticky notes and lists. One person holds a clipboard while another gestures, and the group appears engaged in a crisis management team meeting.