Customer success story: TESAT’s Security Posture

How Airbus Protect Enhanced TESAT’s Security Posture: A Customer Story

Manufacturing companies across various industries form the backbone of Airbus Protect’s customer base. A successful cyber attack on these organisations can disrupt supply chains, halt production lines, and lead to significant financial losses, thereby making them prime targets for cyber threats. In an ever-evolving cyber landscape, the security of these manufacturing companies is paramount to maintaining operational continuity and economic stability.

Contact our expert team

The Client

TESAT is a leading manufacturer of satellite equipment. The product range spans the smallest space-specific components to modules, entire assemblies or payloads for telecommunication, navigation, earth observation and science missions. In Backnang, Germany, more than 1,200 employees develop, assemble and test systems and equipment for satellite communications. TESAT is the technology leader for in-orbit-verified optical communication terminals for data transmission via laser and has a focus on commercial and institutional space programs.

Customer Need: Building and testing a robust ISMS with expert guidance

To enhance its information security programme and ensure compliance with legal, regulatory, and customer requirements, TESAT decided to develop and operate an ISO 27001-certified Information Security Management System (ISMS). To create and implement the necessary information security policies, processes, and guidelines for certification, TESAT sought assistance from Airbus Protect.

After achieving ISO 27001 certification, TESAT aimed to conduct a simulation exercise to practise handling a cyber emergency in a “train-as-you-fight” manner with an Incident Response Team. The goal of this exercise was to reduce response times, improve overall responsiveness, and assess compliance with reporting requirements, focusing on identifying and eliminating any obstacles and errors. This included verifying adherence to NIS2 reporting obligations within the 24-hour and 72-hour timeframes.

Our Solution: Beyond ISO 27001 compliance

Airbus Protect supported TESAT in establishing an ISO 27001-compliant ISMS and supported TESAT in the certification process. Airbus Protect provided experienced ISMS security consultants to assist in developing the necessary policies and process descriptions, to accompany the implementation of security measures, as well as during the certification audits.

To best prepare TESAT for a cyber crisis, an Incident Response Emergency Drill was conducted. A fictitious cyber incident scenario was designed to simulate real-life emergency conditions. The exercise focused on responding as though it were an actual crisis, evaluating both the implemented emergency processes and the internal reporting chain. Additionally, the solution was successfully tested for compliance with the new NIS2 reporting obligations.

Customer Benefit: Boosting resilience for enhanced security posture

Airbus Protect played an important role in helping TESAT establish an ISO 27001-compliant ISMS. This support ensured compliance with relevant laws and regulations, addressed security gaps and vulnerabilities, and secured ISO 27001 certification.

Furthermore, Airbus Protect enhanced TESAT’s readiness for cybersecurity incidents through hands-on experience. This included identifying and closing gaps in the reporting chain, accelerating response times, improving coordination within the crisis management team, and reducing potential business downtime during incidents.

As a result of Airbus Protect’s support, TESAT has significantly strengthened its overall security posture and is now well-prepared to effectively counter cyberattacks, leveraging the experience gained to ensure robust crisis management.

A strong customer relationship

Responsiveness, onsite-availability and expertise were key for the implementation of an ISMS and subsequent certification within a very challenging time frame.

Michael Waibel, Chief Information Security Officer at TESAT

Our Airbus Protect experts’ feedback

Achieving ISO 27001 certification with only a few minor deviations is exceptional and a significant accomplishment for the entire team involved.

Thomas Wershofen, Lead Cyber Security Consultant OT at Airbus Protect

By designing realistic, tailored exercises, we enhance acceptance and training effectiveness among employees and within the organisation. This approach not only uncovers and addresses real issues but also fosters long-term awareness and preparedness for handling cyber crises.

Markus Neumaier, Incident Responder at Airbus Protect

Learn more about our cybersecurity offerings

Discover more about the services mentioned in this customer story

Governance, Risk, Compliance & Audits

We help you understand your current threat landscape, anticipate risks before they materialise and stay up to date with current regulations.

Incident Response & Forensics

Are you under attack and unsure how to react? Our CSIRT team dedicated to handling live cybersecurity incidents will help you resolve them while minimising their impact.