Your holistic partner for cyber security

We view IT security as a process that extends across all areas of the company and is constantly evolving. Through customer and research projects, we have established our focus in the areas of Secure SDLC, testing, Industrial Security (OT-Security) and in the implementation of Information Security Management Systems (ISMS).

Protecting the integrity, confidentiality and availability of company-wide IT and thus maintaining information security is one of the most important tasks that a company must face in the advancing digitalization. OTARIS accompanies you as a holistic partner in the transformation to enterprise-wide IT security.


In various standardized test procedures, we check your IT or cloud infrastructure, website or application with regard to security gaps and architecture problems. In penetration tests, we simulate the actions of a real attacker in order to find security gaps first and then help you close them.

Whether ISO/IEC 27001, BSI IT-Grundschutz or ISIS12/CISIS12: we help you create standardized processes and practices for IT security and thus systematically protect your company – because full IT security can only be achieved by taking all areas of the company into account.

We advise you on all phases of the software development lifecycle and help you to firmly anchor IT security in your development through Security-by-Design without hindering it. Through the automation and integration of security and DevSecOps tools, errors are detected early on and thus you deliver more secure software.

Industrial facilities today are closely linked to IT and are lucrative targets for cybercriminals. To be able to guarantee system availability, both office and factory backbone networks and the machine network must therefore be secured and checked for vulnerabilities by means of regular tests. In our work, we are committed to the principles of the “Security made in Germany” initiative and are guided by the regulations within the framework of the IT Security Act (Federal Office for Information Security – BSI), which includes the Best Practice Framework ISO 27001 recommended by the BSI.

Security made in Germany

The mark, which is protected by trademark law, is awarded by the IT security association TeleTrusT Deutschland e.V. as a special quality mark to companies that have their headquarters in Germany, whose research and development activities take place exclusively in Germany, whose products do not contain hidden access for third parties (“backdoors”) and who undertake to meet the requirements of German data protection law. Companies that bear the mark are thus committed to the highest standards of quality and data protection. As the Bremen regional office of TeleTrusT Bundesverband IT-Sicherheit e.V., OTARIS is committed to promoting security and trustworthiness in the use of IT systems.

Unsere Dienstleistungen:

  • Development and implementation of security concepts
  • Vulnerability analysis of infrastructures and end devices
  • Development and analysis of security architectures (e.g. threat modeling)
  • Penetration tests and web checks
  • Implementation of Information Security Management Systems (ISMS) (CISIS/ISIS12, BSI IT-Grundschutz, ISO/IEC 27001)
  • Independent consulting on IT security products


  • Source code audits (static and dynamic)
  • Optimized solution concepts and recommendations for risk minimization in electronic business processes
  • Advice on data protection and data security
  • Security analyses in the area of social media
  • Employee sensitization / security awareness seminars
  • Support for the introduction of security solutions