Qualified service providers
In the case of cyber attacks, the involvement of a qualified service provider can be useful both in terms of prevention and after an acute security incident.
To help select these qualified service providers, the BSI, pursuant to section 3 paragraph 3 BSIG has published a list of selection criteria for various topics and identified qualified service providers that meet these requirements using the competitively neutral process described below.
Currently, this information is available for the following forms of attack:
DDoS attacks
Auswahlkriterien für qualifizierte DDoS-Mitigation-Dienstleister
Liste qualifizierter DDoS-Mitigation-Dienstleister; Stand: 05.06.2024
The BSI has summarised additional information on DDoS attacks on a topic page.
APT
Auswahlkriterien für qualifizierte APT-Response-Dienstleister
Liste der qualifizierten APT-Response-Dienstleister; Stand: 01.08.2024
For quick first aid in the event of an APT incident, see also:
Process for qualifying service providers
The identification of qualified service providers carried out by the BSI, in accordance with Section 3 (3)BSIG, is a process that ensures competitive neutrality. The service providers have to proceed through two stages in order to be included in the overview list in the event that they are successful.
- The first step requires the service provider to submit a self-disclosure. In this, the service provider should present and explain the products and performance evaluations required within the scope of the task area.
- The second part of the procedure is an interview at the premises of the BSI. The service provider has to prove their technical and professional competence by presenting the procedure required in a fictitious scenario to experts in the field.
Prospective service providers can contact the functional mailbox qdl@bsi.bund.de for further information at any time.
Further information on other BSI services can be found on the Security Checks topic pages.
