Cybersecurity Audit for IT, OT and Maritime

We identify vulnerabilities where information systems meet operational technologies.

We conduct comprehensive cybersecurity assessments of IT infrastructure, OT/ICS systems and maritime environments. We verify compliance with IMO 2021, ISO 27001, NIST and IEC 62443. We deliver a report with risk prioritization and a concrete action plan.

Modern organizations operate at the intersection of three worlds: traditional IT, operational systems (OT/ICS) and — in the maritime industry — international regulations. Each domain has its own threat profile, and real risk emerges at the intersection points.

Our audits are led by seniors with CCIE Security, CISSP, CCSP and ISO 27001 Lead Auditor certifications. Zygmunt Gorszczyński brings auditing experience and Top Secret clearance. Andrzej Gab combines network security expertise (CCIE) with practical SOC and banking experience. The team also brings 15+ years of PAM and PKI practice.

We work using gap analysis methodology against your chosen standard, perform penetration tests (if required), map data flows and identify critical risk points. We deliver a prioritized report — not theory, but a concrete remediation plan with cost estimates.

We stand out for our ability to audit hybrid environments (IT+OT) in a single project and our knowledge of maritime requirements (IMO Resolution MSC.428(98)). You don’t need to engage three different firms — we handle it in one audit.

Benefits

  • Complete risk picture — IT, OT and maritime assessment in one audit, no gaps between domains
  • Regulatory compliance — verification against ISO 27001, NIS-2, DORA, IMO 2021, IEC 62443
  • Action prioritization — report with specific remediation steps, ordered by risk
  • Certified seniors — CCIE Security, CISSP, CCSP, ISO 27001 Lead Auditor, not junior staff
  • Action plan, not just a report — cost estimates, implementation schedule, deployment support

For Whom

  • Companies with OT/ICS infrastructure — manufacturing, energy, transport, seaports
  • Organizations subject to NIS-2/KSC — critical and important entities requiring compliance audit
  • Shipowners and maritime operators — entities required to comply with IMO 2021

What We Deliver

  • Cybersecurity audit report (gap analysis against chosen standard)
  • Register of identified risks with criticality assessment (risk matrix)
  • Remediation plan with action prioritization and cost estimates
  • Technical and organizational recommendations (policies, procedures, architectural changes)
  • Results presentation for management (executive summary)

Book an Audit — Let’s discuss the audit scope, first consultation is free.

Interested?

Schedule a free consultation — let's discuss your needs.

Contact Us
Back to homepage