For rated companies
DIGITAL BUSINESS
UNDER CONTROL
UNDER CONTROL
The CyberRisk Rating shows your customers that
your company has the risks associated with
digital transformation under control.
your company has the risks associated with
digital transformation under control.
Only 25
questions
questions
The CyberRisk Rating is based on 25 practical questions
that allow for efficient assessment.
that allow for efficient assessment.
YOUR DATA,
YOUR CONTROL
YOUR CONTROL
Only the rating is passed on to your customers -
you retain control over your sensitive information.
you retain control over your sensitive information.
The CyberRisk Rating
Our solution provides two levels of assessment depth: First, the automated WebRisk
Indicator creates a baseline for all your suppliers. You then decide which suppliers
will be
selected for the Rating process that leads to a full A(+) or B rating.
WebRisk Indicator
Automated process:
Evaluation of public information that is provided fast and for every supplier.
CyberRisk Rating A(+)/B
Self-Assessment:
Full rating, professionally validated, based on the Cyber Risk Scheme of KSÖ.
A+ rating requiring third party audit
This is how the CyberRisk Rating works for rated companies
The process of the CyberRisk Rating is uncomplicated for you and completed in three steps. If you have any problems with the process, our team will be happy to help you.
Click the icons to learn more about the rating process step by step.
As soon as a CyberRisk rating is requested for your
company, you will receive
an e-mail with the invitation link to the assessment. Your cyber risk
assessment consists of 25
yes/no questions. If you answer with “yes”, please describe your
organization’s implementation of
the requirement. After the assessment, your answers will be validated by an
IT security
professional.
It may happen that the validation declares one or more of your answers
unclear. We will then
provide feedback and ask for more details. In this case, you will receive a
notification from us.
You will have the opportunity to correct your answers once. Your assessment
will then be validated
again resulting in the final rating.
As a last step, you can select which CyberRisk Rating
should be published for
your organization – A (advanced requirements) or B (base requirements)? To
make this choice easier
for you, a recommendation will be displayed. After you have selected the
desired rating, the
process is completed. Your CyberRisk Rating will be valid
for one year.
CyberRisk Rating requirements
The CyberRisk Rating by KSV1870 is based on the Cyber Risk Scheme of the
Kompetenzzentrum Sicheres Österreich and consists of 25 requirements. These are
currently available in English and
German and can be viewed by you at any time.
FAQ
If your question is not being answered here, please do not hesitate to contact our team.
We are available by phone (+43 (0) 732 / 860 626) and e-mail.
We are available by phone (+43 (0) 732 / 860 626) and e-mail.
Who can customers contact?
What are the benefits for customers?
What does the CyberRisk Rating by KSV1870 cost?
Where or in which sectors and areas can the CRR be used? Is it
independent of
size?
Does the CyberRisk rating affect the KSV1870 rating?
How does it work and how long does it take to
process/implement?
In collaboration with
powered by
