Are we covered by NIS2?

Most likely yes, if you produce something or supply a company that does. Energy, food, transport, water, pharma, chemicals and manufacturing are all covered — often already at 50 employees or €10M revenue. We do a free 30-minute screening to determine it.

Can you work with our PLC and machine vendors?

Yes — it's a requirement, not an option. We never touch critical systems without coordinating with your machine vendor, and we make sure warranties and support agreements aren't lost in the process.

Will it affect operations during implementation?

No, not in normal operation. Our asset discovery is passive (listening to traffic), and segmentation is planned for maintenance windows. We promise no changes to running production equipment without change management.

How long does an OT assessment take?

A typical assessment takes 3–5 weeks from kickoff to delivered report: 1 week of fieldwork at the factory, 2–3 weeks of analysis and 1 week of presentation and roadmap workshop with your team.

An OT risk assessment typically starts around DKK 75,000 for a smaller production environment. Segmentation and monitoring are priced by scope. We always provide a fixed quote after a no-obligation screening.

Industrial IT Security

OT security for production and critical infrastructure

A halt in production is often far more expensive than a breach of the office network. We secure your OT environment — SCADA, PLCs, ICS and industrial networks — without compromising uptime or operations.

What is OT security?

OT isn't just IT with a different cable colour

OT (Operational Technology) is the systems that control your physical production: PLCs, SCADA, HMIs, sensors and industrial networks. They're often old, rarely patched and designed to be reliable — not secure.

When IT and OT converge (Industry 4.0, remote access, cloud monitoring), the same attack techniques from the office network suddenly become a risk to production. A ransomware attack that shuts down a factory typically costs six to seven figures per day — and NIS2 now legally requires you to protect it.

Threat landscape

What we protect your OT environment against

OT attacks look like IT attacks on the surface, but the consequences are different — production stoppage, physical damage and supplier failures.

Ransomware against production

Encrypts engineering workstations and HMIs — the factory stops. We segment and harden so that a breach on the office network can't spread to production.

Legacy systems without patches

Windows XP, Server 2003 and PLC firmware that's never updated. We build compensating controls and virtual patching without touching vulnerable devices.

Flat networks without segmentation

Entire factory on the same VLAN. One compromised coffee machine reaches the PLC. We segment per the Purdue model and document the data flow.

Insecure remote access to SCADA

Open VPNs, vendors with permanent accounts, RDP straight to HMIs. We build jump hosts, MFA and just-in-time access.

Supply chain attacks

Compromised vendor software or updates (SolarWinds-style). We validate software bills of material and monitor vendor traffic.

Insider and USB-based attacks

Stuxnet-style USB spread and unintentional mistakes from technicians. We introduce USB control, asset whitelisting and logging on every engineering workstation.

IT-specialist ved whiteboard med løsningsplan

Our approach

From blind spot to control — without stopping production

OT security can't be rolled out over a weekend. We work in three phases: first we understand the environment (passive asset discovery — no scanning that could topple old PLCs), then we design and segment with your OT team, and finally we set up continuous monitoring.

We don't touch critical systems without testing in a lab or speaking to your machine vendor first. Operations and safety always come before security measures — even when deadlines are pressing.

Services

Our OT security services

We cover the entire lifecycle — from the first risk assessment to 24/7 monitoring and NIS2 reporting.

OT risk assessment

Passive mapping of assets, data flows and vulnerabilities. Delivered with a prioritised roadmap and budget estimate — typically 3–5 weeks of work.

IT/OT network segmentation

Design and implementation per the Purdue model. Firewalls, VLANs and data diodes where it makes sense — tested before going into production.

Asset discovery & inventory

Complete, maintained overview of every PLC, HMI, switch and sensor. Foundation for security, NIS2 documentation and operational optimisation.

Secure remote access

Centralised jump host with MFA, session recording and just-in-time access for vendors. Replaces ad-hoc VPNs and shared accounts.

24/7 OT monitoring

Dedicated OT-aware monitoring that recognises industrial protocols (Modbus, DNP3, OPC UA) and alerts on unusual behaviour.

NIS2 compliance for production

Risk analysis, incident reporting, supplier management and board approval. We deliver the documentation regulators will ask for.

NIS2 and critical infrastructure

NIS2 hits far more manufacturers than you'd think

NIS2 covers companies in energy, food, transport, water, pharma, chemicals and manufacturing — including as a supplier to other covered companies. Fines can reach 2% of global revenue, and the board is personally liable.

We help you determine whether you're covered, close the gaps in your OT security and document compliance — before the regulator (Centre for Cyber Security) comes knocking.

Get a NIS2 OT assessment

Frequently asked questions about OT security

Microsoft Solutions Partner

Experience from industry, utilities and life science

We've been securing OT environments for Danish manufacturers since 2010 — from smaller factories to critical infrastructure. Book a no-obligation OT assessment and get a concrete roadmap.

Book OT assessment

Ready to secure your production?

We offer a free 30-minute conversation where we determine whether you're covered by NIS2 and where your biggest OT risks likely sit.