Configurator Cybersecurity. GermanAI Defense

Step 1 of 9

Scope. Multi-select

What should be protected? Multi-select possible.

Endpoints / workstations

Employee devices

PCs, laptops, mobile devices across your company.

Server / datacenter

On-premises & cloud

Your own server infrastructure, virtual machines, containers.

Cloud workloads

AWS / Azure / GCP

Hyperscaler workloads, SaaS integrations, cloud-native apps.

OT / industry

ICS / SCADA / IoT

Production facilities, control technology, connected sensors.

Network perimeter

Firewall / WAF / DDoS

Edge security, external connectivity, web applications.

Step 2 of 9

Organization size.

How many employees / protected identities?

Up to 50

Small team / startup

50-250

Mid-market

250-1,000

Group division / agency

1,000-5,000

Large enterprise

5,000+

Corporate group / federal

Step 3 of 9

SIEM platform.

Which platform do you use? We integrate, or we bring our own.

IBM QRadar

Enterprise SIEM

Proven platform with strong correlation and compliance reporting.

Microsoft Sentinel

Cloud-native

Deep Microsoft 365 and Azure integration, AI-powered hunts.

Cisco XDR / SecureX

Network-focused

Strong on network telemetry and threat hunting.

GAD recommendation

We’ll choose for you

We recommend the optimal platform based on your requirements.

Existing platform

You already have one

We connect to your existing SIEM / SOAR solution.

Step 4 of 9

Response time.

How fast must we respond?

8×5 business hours

Mon-Fri 8 a.m.-6 p.m.

For standard protection needs, less time-critical workloads.

24/7 Premium

Response < 30 min

Around-the-clock monitoring with fast escalation. Popular

Mission-Critical

Highest priority

Dedicated engineer, AI pre-filtering, immediate authority to act.

Step 5 of 9

Additional modules. Multi-select

Which GAD building blocks should be part of the package?

GAD Defense Engine

AI anomaly detection

Self-learning defense across all data flows.

RedMentis. AI pentesting

Continuously attack

Discovers vulnerabilities before real attackers do.

AI Test Automation

Model validation

Validate your AI systems against drift, bias, and hallucinations.

Threat intelligence

Early-warning feeds

Industry-specific indicators of compromise and threat-actor profiles.

Forensics & Incident Response

In case of incident

Forensic analysis, evidence preservation, crisis communication.

Step 6 of 9

Compliance packages. Multi-select

Which standards must be met?

GDPR compliance dossier

DPA, TOMs, record of processing activities.

ISO 27001 audit preparation

ISMS setup, risk analysis, certification support.

KRITIS compliance

BSI § 8a, evidence review, B3S requirements.

NIS-2 readiness

Gap analysis, action plan under NIS2UmsuCG.

TISAX (Automotive)

VDA-ISA, information-security assessment.

VS-NfD

Classified-information directive for public-sector contracts.

Step 7 of 9

Operations model.

How should the SOC be operated?

Remote SOC

From GAD location

We operate the SOC fully remote. Minimum overhead for you.

Hybrid

GAD + your team

Shared model. We cover 24/7, your team handles day-to-day.

On-site / in-house

At your premises

Engineers physically sit with you. E.g., KRITIS / VS-NfD.

Step 8 of 9

Contract term.

Longer term, more attractive conditions.

12 months

Maximum flexibility

24 months

Balanced

36 months

Standard for SOC

Popular

60 months

Best conditions

Step 9 of 9

Budget range.

A rough indication helps us. Optional.

under €100,000 / year

€100,000-500,000 / year

Typical

€500,000-2M / year

€2M-10M / year

€10M+ / year

To be discussed