Select your location for location specific information:
You can register with the BSI as a common higher-level contact point (GÜAS). After registration, you can act as a contact point for reports and security notices for operators of critical infrastructures that belong to the same sector.
Critical infrastructures are organizations and facilities that are of great importance to the functioning of the community and whose failure or impairment would result in significant supply bottlenecks or threats to public safety.
In accordance with the legal provisions, operators of critical infrastructures must provide the Federal Office for Information Security (BSI) with a contact point through which they can be reached at any time. The BSI sends various information to this address, for example warnings on IT security and situation information.
Operators of critical infrastructures that belong to the same sector can also designate a joint higher-level contact point (GÜAS).
In this case, the exchange of information between the operators of critical infrastructures and the BSI generally takes place via this common point of contact.
As a rule, the BSI sends out information during normal business hours. In exceptional cases, urgent warnings can also be sent outside normal business hours, i.e. on public holidays, weekends or at night.
You can register as a common superordinate contact point if at least one operator has named you as their contact point.
You can name a common point of contact (CSC) to the Federal Office for Information Security (BSI).
The BSI does not charge any costs for naming the contact point.
There are no deadlines.
It usually takes 2 to 3 weeks to process your registration.
If you would like to qualify in the field of IT security and prove your expertise, you can apply for certification under certain conditions.
If you operate critical infrastructures, you must prove that the security of your information technology corresponds to the state of the art. You must submit proof to the Federal Office for Information Security (BSI) every two years.
If you operate a Critical Infrastructure, you must name a point of contact to the Federal Office for Information Security that can be reached at any time.