Cyber-Security

VdS Schadenverhütung is the publisher of the guidelines in the well-known VdS 10000 series and offers training, guides, quick checks, and certifications developed for them.

When a threat meets a vulnerability, danger arises.

Improve the resilience of your company and the know-how of your employees in the shortest possible time with the aim of minimizing risk and giving the threats that affect your environment no chance.
This is loss prevention in its purest form: the VdS cyber security offers!

With our exclusive VdS 10000 series, we offer practical guidelines that are already implementable in mid-sized organisations and raise information security and data protection to a new level in companies as well as in municipalities and municipal enterprises. At the centre of the series is the ISMS according to VdS 10000, based on ISO/IEC 27001. It is complemented by VdS 10010 for the implementation of GDPR requirements and by VdS 10100 for the structured implementation of the NIS-2 Directive. For micro-enterprises, VdS 10005 additionally provides a compact entry-level solution.

For those who need quick results, we also offer the VdS Quick Audit and our vulnerability analysis: rapid assessments of your cyber security to identify weaknesses and provide a solid basis for insurance decisions.

Welcome to VdS Loss Prevention – where cyber security meets the mid-market.

Our new VdS 10100 guideline now open for consultation!

The VdS 10100 guideline is currently in the consultation phase. The consultation will run until 13 March 2026. During this period, interested parties may submit comments and feedback on the draft.
Publication of the final guideline is expected at the end of March / beginning of April.

VdS 10000 - Information Security

for Mid-Market+

VdS 10000 is a certifiable ISMS designed for mid-sized companies and beyond. The guideline aligns with the requirements of ISO/IEC 27001 and the BSI IT-Grundschutz and provides a practical and structured approach to the comprehensive protection of information. Companies can use it to effectively plan, implement and continuously improve their information security. Certification according to VdS 10000 creates trust among customers and business partners and demonstrates compliance with high security standards. With the add-on VdS 10020, it also provides guidance for interpreting and implementing VdS 10000 for Industrial Control Systems (ICS).

VdS 10010 - Data Privacy

for Mid-Market+

Data protection management made easy with VdS 10010: Meet the requirements of the GDPR with ease. The compact guideline is particularly aimed at small and medium-sized enterprises, but can also be applied in larger organisations. Closely linked to the proven VdS 10000 for information security, it enables the implementation of an integrated management system. With clear requirements and practical solutions, organisations can achieve an appropriate level of data protection without excessive organisational or financial effort.

VdS 10100 - Information Security

for NIS-2 Entities

Implement the requirements of the European NIS-2 Directive in a structured and practical way. VdS 10100 supports organisations in establishing an information security management system aligned with the regulatory requirements of NIS-2.
Building on the proven VdS 10000, the guideline provides clear requirements and practical measures to strengthen cyber resilience and support compliance with legal obligations.
This gives organisations a practical pathway for implementing the NIS-2 requirements without creating more organisational effort than necessary.

VdS 10020 - Industrial Control Systems

for Industrial Companies

Information Security Management for ICS: The VdS 10020 guidelines interpret the VdS 10000 specifically for industrial control systems (ICS), which have unique requirements such as real-time data processing and process control synchronization. They provide medium-sized companies with a practical, clear, and efficient solution for securing their ICS without overburdening them financially or organizationally.
The involvement of renowned industrial companies and academics ensures strong practical relevance. This guarantees a consistent and sustainable security strategy that seamlessly integrates into existing structures.

VdS 3836 - Internet of Things (SecIoT)

for Industrial Companies

Certified Cyber Security for connected Products: The VdS guidelines 3836 provide a practical solution for the comprehensive protection of connected fire safety and security products. Based on the internationally recognized IEC 62443 series, they address information security in the Internet of Things (IoT) and Industry 4.0 comprehensively.
Products meeting the high VdS standards are marked with the VdS SecIoT logo, giving manufacturers a clear competitive advantage.
The guidelines ensure a holistic evaluation and certification, considering both IT security and functional safety equally.

VdS Quick-Audit

for Insurer

The VdS Quick Audit for Information Security is an independent status analysis of cyber-security measures in companies, based on the VdS Quick Check. It is especially suitable for smaller businesses and typically takes one day. The audit report provides a detailed assessment of existing measures, identifies security gaps, and offers specific improvement suggestions. In particular, the Quick Audit serves as a valuable examination component for insurers to assess the insurability of clients. Use the VdS Quick Audit to make your insurance decisions on a solid information basis and minimize potential risks.

VdS 10005 - Information Securtiy

for Small Businesses

The VdS 10005 is an industry-specific catalog of measures for small and micro-enterprises to ensure an appropriate level of information security. It is designed for companies with up to 20 employees and provides practical requirements for responsibilities, IT systems, networks, environment, data backup, and IT service providers. The goal is a resource-appropriate safeguarding of the IT landscape. With a VdS certificate according to VdS 10005, companies gain high confidence in their information security and benefit from competitive advantages, enhanced risk management, and relieved management.

Contact

Management

Thomas Adenauer

Assistance

Sonja Würzberger

+492217766382