Presentation content:

Using the example of the BorWin4/DolWin4 and BalWin1/BalWin2 projects currently being implemented at Amprion Offshore, a practical report will be given on the project experience gained.

The aim is to provide conference participants with an overview of selected relevant IT security regulations for the above-mentioned projects.

Their anchoring and implementation in the context of the above-mentioned major projects will be presented and lessons learnt will be drawn.

The scope of the analysis will include both EU-wide and national regulations that affect both the operator of the planned systems and the supplier side (manufacturers and integrators).

This includes current and upcoming regulations such as NIS-2, RCE, CRA and IT-SiG2.0. experiences from addressing and implementing the required IT security measures are presented.

CV:

Jan Grotelüschen, a graduate engineer in electronics and electrical engineering, worked for many years as a project manager in the areas of IT strategy, IT service management and IT security after completing his studies.

His areas of specialisation included the specification and implementation of IT processes in large companies in a wide range of industries as well as the planning and management of IT security audits in an international environment.

Mr Grotelüschen has been with GAI NetConsult GmbH since 2020. His professional focus is on consulting on security issues in the Industrial Control Systems / Operational Technology environment.

He also advises companies on the creation of organisational and technical security guidelines, such as operational concepts and emergency planning.