Comprehensive protection for companies

It doesn't matter whether it's a family business, a start-up, a supplier for a large corporation, a planning office in the construction industry or a development company for electronics that is affected: In Swiss companies, a wide variety of offences cause immense damage every year; the economic damage runs into the billions. Crimes, misconduct or a lack of awareness can threaten the existence of an entire company or plunge a company into a deep crisis.

Multiple hazards

Whether it's a small business with just a few employees or a large, internationally active company: regardless of the sector in which the company operates, they all have something in common: diversity of ideas, know-how, motivation, quality, products and innovation are their capital. These are the qualities that distinguish companies in Switzerland in the marketplace. Not only in the region, but also beyond the country's borders. A compelling business model, tried-and-tested processes, patents in the pipeline, value-preserving information or sustainable technologies always attract curiosity. Potential customers are not the only ones interested. White-collar delinquents, hackers, cybercriminals, and competitors at home and abroad are also interested players. Innovative companies of all sectors and sizes are not immune to white-collar crime, sabotage and espionage attacks, for example through social engineering, cyberattacks or the classic perpetrators from within, intentionally or unintentionally. Production facilities, know-how, information and employees are at risk, whether in the office, at home or on business trips.

Human risk factor

Nowadays, the attackers hardly come clumsily through the destroyed basement window. Conventional and digital attacks using cheaply available electronics, the acquisition of barely protected information and penetration of inadequately secured IT infrastructure are much more promising and cost-effective. Threats come from many different directions, the technical infrastructure is only one attack surface or vector. Security always starts with the human risk factor.

• Example product piracyCounterfeits of high-quality spare parts and unique products are sold at rock-bottom prices and may pose a threat to consumers and users. Profit losses and loss of confidence are the consequences, which directly reflects on the manufacturing company.
• Example crisis management: Crises can affect companies of any size. Usually when no one is prepared or expects it. Emergency and crisis plans as well as the early definition of functions and responsibilities, and also the training of processes, prevent a crisis from becoming a super-GAU.
• Example eavesdropping: Not only via the IT network, but also directly in the company, confidential information and sensitive data are obtained, bugs, mini cameras or drones form the spearhead of the eavesdropping devices. Technology and readily configured electronics are becoming more affordable and smaller. Electronics can be ordered discreetly on the net. A competitive advantage with secretly obtained information is guaranteed to the competition.

Constantly increasing security risks require economic protection

The ongoing goal of every company management should be, among other things, to protect its own employees, to ensure smooth production and the availability of information as well as innovation in order to guarantee the company's prosperity in the future. Protecting the core corporate assets - the so-called crown jewels - of any company is the priority interest. Integral security must be embedded in the business strategy.

Event Management

Rapid and targeted incident management is becoming increasingly important. Time and again, there is a call for a contact point that can be contacted when damage has occurred following an incident or when the crisis shows no sign of abating. The approach of this contact point should be to react as quickly, appropriately and effectively as possible in the event of an incident and to accompany the damaged company or the person affected. At the same time, the desire is expressed for Swiss or at least regional providers who would have to distinguish themselves through their operational experience, interdisciplinary competencies, holistic view and their relatively scalable agility. Emergencies require rapid and targeted action by a variety of specialists, whose actions must be coordinated in the best possible way in order to provide the attacked company with optimal support, both internally and externally. Prevention Of course, the best protection of the company is guaranteed if these negative effects or attacks can be prevented as far as possible. In the best case, risk assessments are carried out with recurring, preventive measures, security strategies are developed, awareness and sensitisation campaigns are implemented and checked with recurring controlling (e.g. audits) and adjusted on the basis of current findings. Based on the three pillars of infrastructure, people and organisation as well as information, it is necessary - depending on the initial situation and orientation of the respective company - to consider aspects such as site security, the human risk factor, recruitment, mobility security, emergency and crisis management, forensics, know-how protection as well as cyber security and general information and data protection and to implement targeted defence and countermeasures. Competence Centre for Economic Protection is operational In order to be able to offer both reactive and preventive comprehensive services in the area of integral security, the Competence Centre for Economic Protection Switzerland was created at the end of October 2019 (www.swissbp.ch). In the event of an incident, companies, institutions and private individuals are to receive rapid, unbureaucratic and effective support against current and future threats in the areas of cybercrime, economic crime and industrial espionage. With eight experts and their companies from the most diverse areas of integral security, who support customers and those seeking help reactively and preventively, accompany them in an emergency and implement the necessary measures operationally and practically. Comprehensive, prompt, confidential and from a single source. Conceptually, strategically and operationally. Seven days a week. In an emergency, also at weekends and at night.