logo
Expertisechevron-right IT-Security

IT-Security

HK2 advises companies and public institutions on IT security law at the intersection of regulation, administrative practice, and technical implementation. 

Our focus lies on the legally compliant implementation of requirements under NIS-2, DORA, the CRA, and sector-specific KRITIS regulations.

  • Analysis and implementation of requirements under NIS-2, DORA, CRA, and the German IT Security Act 2.0 
  • Determination of needs and risk assessments, including liability issues for managing directors and board members 
  • Drafting and review of IT security agreements, EVB-IT contracts, and tender documents 
  • Support in complying with sector-specific security standards

  • Support during certifications and audits (e.g. ISO/IEC 27001, BSI IT-Baseline Protection, NIST) 

  • Development of security concepts, incident response plans, and contingency strategies 

  • Advice on methodological implementation of the “state of the art” requirements – based on the TeleTrusT guidelines

  • Legal coordination of IT security incidents and cyberattacks
  • Coordination of forensic measures and communication with regulatory authorities
  • Assessment and minimization of liability and sanction risks
IT-Security-image
background-hk2

Experts

Build IT resilience with us.

Image of Dr. Carsten Brodersen

Dr. Carsten Brodersen

Image of Karsten U. Bartels LL.M.

Karsten U. Bartels LL.M.

Image of Bernhard Kloos

Bernhard Kloos