In 2023, Airbus Protect demonstrated unparalleled achievements in cyber defence, marking a significant milestone for the company. Four key events in Germany contribute to the organisation's commitment to excellence and innovation in the ever-evolving landscape of cybersecurity.
Four key events in Germany contribute to the organisation's commitment to excellence and innovation in the ever-evolving landscape of cybersecurity.
The German Airbus Protect team entered uncharted territory as it participated in the prestigious NATO exercise “Locked Shields.” The world’s largest live-fire cyber defence exercise, organised by the NATO Cooperative Cyber Defence Centre of Excellence, presented Airbus Protect with an opportunity to showcase its expertise. The team, including Incident Responder Markus Neumaier and SOC Analysts Tobias Paßreiter, Stefan Hechler, and Fabian Sylvester, collaborated with military personnel and cybersecurity specialists. Their performance underscored the company’s dedication to tackling real-time cyber threats and highlighted the necessity of industry-military cooperation for robust cyber defence in Europe.
Airbus Protect’s cybersecurity analysts, hailing from the Security Operations Center (SOC) in Germany, secured the top spot in the global “Boss of the SOC” competition. Competing against over 1000 participants from 30 countries, the team demonstrated exceptional proficiency in utilising Splunk and other tools. Tobias Paßreiter, Dominik Rabenau, Atilla Öztamur, and Hugo Rodriguez showcased their expertise in open source intelligence and analytical skills through their winning strategy. This victory not only highlighted the team’s prowess but also emphasised the high-quality Managed Security Services offered by Airbus Protect.
In July 2023, Airbus Protect achieved a significant milestone by passing the examination of the German Federal Office for Information Security (BSI) and earning qualification as a trusted Advanced Persistent Threat (APT) response service provider. The rigorous evaluation process, including comprehensive documentation and technical interviews, affirmed Airbus Protect’s capability to effectively manage and respond to sophisticated cyber attacks. Inclusion in the BSI’s list of qualified APT response service providers reinforced Airbus Protect’s position as a cybersecurity leader in Germany, capable of providing robust emergency and crisis management.
Airbus Protect engaged in a knowledge exchange with the State Criminal Police Office of North Rhine-Westphalia (LKA NRW) Cybercrime Unit. The collaboration involved two-way visits, with the Airbus Protect team gaining insights into LKA NRW’s methods for unmasking hackers and mobile forensics. This exchange developed relationships and provided valuable information for incident reports relevant to law enforcement. The engagement highlighted Airbus Protect’s commitment to staying abreast of the latest investigative techniques and fostering collaboration with law enforcement agencies.
In summary, Airbus Protect’s journey in 2023 marked a paradigm shift in the realm of cyber defence. From participating in international exercises and winning global competitions, to achieving qualifications and engaging in knowledge exchange, the company demonstrated an unwavering commitment to advancing cybersecurity capabilities. As Airbus Protect continues to set new standards, its endeavours in 2023 lay a solid foundation for future innovations and collaborations in the field of cyber defence.
Cybersecurity Supply Chain attacks are an underestimated risk for companies, where cyber threat actors can hack into a software vendor’s network, posing a significant danger to many companies. Who may be affected by these attacks? Every company of every branch who is in a business relationship to a third-party vendor who offers services or software to […]
Read more
Cybersecurity The use of network scanners with a graphical user interface has been observed in a number of former IR engagements conducted by our CSIRT. Discover how operators use these tools to map networks and minimize detection.
Read more
Cybersecurity In the first part of this CTI focused blog posts series, we introduced the Intelligence Production Cycle and proposed a functional & technical architecture for a Cyber Threat Intelligence Platform integrated into and supporting both SOC and Incident Response (IR) operations.
Read more