“The workshop played a key role in helping us to prepare our security processes for the upcoming regulatory requirements. What we particularly value about bbv is the practical knowledge and experience it offers in different industries.”
Rainer Steglich, Team Lead Systems Engineering, System Industrie Electronic GmbH
System Industrie Electronic GmbH (S.I.E) is a market-leading Austrian development and manufacturing company offering highly specialised embedded systems in the fields of medical technology, industrial automation and cybersecurity The company’s products can be found in ultrasound and x-ray systems or in safety-critical industrial applications. From the development of custom electronics and software to industrial design through to manufacturing, S.I.E supports its customers along the entire value chain.
With the introduction of new EU regulations, such as the Cyber Resilience Act and the NIS2 Directive, S.I.E is faced with the challenge of ensuring the continued compliance of its products and development processes with the increasing security requirements. A bbv presentation at the Embedded Software Engineering Congress in Sindelfingen aroused the company’s interest in a professional analysis and optimisation of its security processes. S.I.E was fully convinced by bbv’s approaches to transforming development processes into a secure development life cycle. A two-day security workshop was planned for spring 2024, laying the foundations for the company’s future security strategy.
From workshop to security strategy
The workshop had a clear goal and that was to reconcile the security requirements of the new regulations with S.I.E’s existing processes and products and to identify potential vulnerabilities. On the first day, a number of fundamental security goals were defined together, which served as the starting point for further action. The backlog or to-do list included, among other aspects, consistent compliance with the highest security standards throughout the entire product life cycle and – as a result – the development of a sound understanding of security throughout the entire company. S.I.E. also formulated its aim to be recognised as a leader in the field of cybersecurity and to contribute this know-how to the development of systems with customers. Fulfilling these goals would allow a mature security culture to be established and sustainably maintained in the company.
The focus on the second day was initially on the relevant security standards and guidelines. In terms of security, bbv provided in-depth knowledge of important regulatory requirements such as the Cyber Resilience Act or the Medical Devices Regulation. This included explaining the connection between regulatory requirements and the necessary security measures for the S.I.E development process. Based on this, S.I.E and bbv prioritised the backlog drawn up the previous day according to urgency and defined the first concrete steps for preparing the company for the regulatory challenges and for implementing its security goals.
Establishing a security culture
At the end of a couple of intensive workshop days, both sides were able to reflect on a productive exchange. S.I.E was able to initiate concrete steps to improve its security processes and lay the foundation for a comprehensive security strategy. The results obtained and the backlog created serve as a long-term basis not only for preparing S.I.E for the regulatory challenges ahead, but also for establishing a sustainable security culture throughout the company.
Added value for S.I.E GmbH
- Clear roadmap to compliance: By analysing and prioritising measures, S.I.E now knows the next steps it needs to take to meet future regulatory requirements through the establishment of a secure development life cycle for systems and software.
- Improved security culture: The employees understand the importance of security by design and are aware of the future challenges.
- Strategic competitive advantage: S.I.E is positioning itself as an innovative provider for development and manufacturing of secure products and stands to benefit in the long term from a stronger market presence.
Our services in the project

Your contact
Roland Achermann
As Head of Business Area at bbv, Roland Achermann is responsible for the field of industry and energy. He has many years of extensive experience in software development. Roland contributes his expertise in the fields of digitalisation and individual software to specific solution portfolios.