This page is fully or partially automatically translated.

Send message to

Do you want to send the message without a subject?
Please note that your message can be maximum 1000 characters long
Special characters '<', '>' are not allowed in subject and message
reCaptcha is invalid.
reCaptcha failed because of a problem with the server.

Your message has been sent

You can find the message in your personal profile at "My messages".

An error occured

Please try again.

Make an appointment with

So that you can make an appointment, the calendar will open in a new tab on the personal profile of your contact person.

Create an onsite appointment with

So that you can make an onsite appointment, the appointment request will open in a new tab.

Forums it-sa Expo Knowledge Forum A

One year IT-SiG 2.0: Implementation, challenges & problems

May 2021, the IT-SiG 2.0 came into force. After one year, our speaker sums up and reports on his experiences.

calendar_today Wed, 26.10.2022, 10:15 - 10:30

event_available On site

Action Video


Action description



Legislation, standards, regulations Trend topic



This action is part of the event Forums it-sa Expo

Action Video

grafischer Background

This video is available to the it-sa 365 community. 
Please register or log in with your login data.

Action description

The IT Security Act 2.0 came into force at the end of May 2021. The amendment strengthened the role of the BSI in national cyber defense, while at the same time further tightening the obligations imposed on operators of critical infrastructures and the possible penalties for violations. At the same time, the group of companies and organizations classified as CRITIS was expanded. On the one hand, by adding the new sector of waste disposal and lowering the threshold values, and on the other hand, by the fact that so-called companies in the special public interest (UBI) and their suppliers now also fall under the restrictions of the IT Security Act 2.0.
For the first time, technical measures are also mentioned, such as the introduction of "attack detection systems", which are mandatory, but without defining exactly what is meant by such systems.

After one year, our speaker Nico Werner, Head of Cybersecurity at telent GmbH, sums up. How is the implementation of the new requirements going, where does the law pose challenges and problems for CRITIS operators and suppliers, how can these be solved and where is a tightening of the law desirable?
... read more

Language: German

Questions and Answers: No


This content or feature is available to the it-sa 365 community. 
Please register or log in with your login data.