Frequently asked questions about Cyber Security
What does a security solution from Baggenstos cost?
That depends on your company size, existing infrastructure and the level of protection you want. In the free b.Secure Assessment we determine your actual needs and create a transparent quote. What we can say: the cost of a single incident usually far exceeds the annual cost of professional protection.
How quickly does the Cyber Defense team respond in the event of a cyberattack?
Our Swiss SOC monitors 24/7. In the event of critical incidents, we raise the alarm within 15 minutes, isolate affected systems automatically and start the manual analysis in parallel. False positives are filtered out, real threats are escalated to you immediately. Response times are bindingly defined in the SLA.
What do Managed Security Services (MSS) cover for companies?
We monitor identities, endpoints, email and cloud services around the clock from the Swiss SOC. Microsoft Defender, Sentinel and Darktrace cover detection and response, complemented by vulnerability management and awareness training. Bookable in modules, from basic endpoint protection to 24/7 full monitoring with incident response.
Why is an ordinary firewall or antivirus software no longer enough today?
Modern attackers bypass classic signatures with polymorphic malware, phishing and identity theft. A firewall only sees the network, antivirus only files. Identities and cloud services remain blind spots. With Zero Trust, EDR and AI-based anomaly detection, we stop attacks before classic tools even notice them.
Where and how is our security-relevant data (log files) stored?
In Swiss Microsoft data centres in Zurich and Geneva. Log files, SIEM events and incident data do not leave Switzerland, unless you explicitly want them to. The retention period follows your compliance requirements, but is at least 12 months for forensic analysis. Audit logs are tamper-proof and audit-compliant.
How do you support our employees on the topic of security awareness?
Technology alone stops no phishing clicks. We combine regular training with phishing simulations that replicate real attack patterns, and we evaluate the click rate as a trend. Employees who fall for it receive targeted micro-training instead of blame. This creates a security culture that has a lasting effect.
Can we continue using our existing security tools?
In most cases, yes. We analyse your current tool landscape in the Security Assessment and show what stays, what should be consolidated and what should be added. Often the number of tools is reduced, because Microsoft Defender and Sentinel replace several individual solutions. This saves licence costs and complexity.
