Certifications we hold ourselves
ISO 27001:2022 and ISO 9001:2015. The requirements we discuss with clients pass an annual audit in our own organisation.
Offer · Cybersecurity
We run security audits, build NIS2 and DORA compliance and protect the systems your business runs on. We hold ISO 27001:2022 and ISO 9001:2015 certifications ourselves - the standards we require of ourselves, we implement for clients.
From audit and regulatory compliance to monitoring and incident response. Every service leads to a concrete result - a report, a remediation plan or a working safeguard.
Mapping regulatory obligations onto IT processes, gap analysis, remediation plan and auditor-ready documentation. One window for multiple regulations - audit readiness before the inspection arrives.
Learn moreAn external CISO for organisations without one: security policies, ISO 27001, risk assessment, SOC oversight, incident and IT vendor management.
Learn morePenetration tests of ECC, S/4HANA, HANA, BTP, HCM, Fiori environments and RFC interfaces. Report with CVSS scoring and OWASP-aligned recommendations.
Learn moreSecurityBridge with Microsoft Sentinel, Splunk and QRadar integrations. Cybersecurity-as-a-Service with 24/7 MDR/SOC for SAP environments.
Learn moreCybersecurity workshops for employees, AI Act for C-level, SAP Security for IT teams. Accounted for as fulfilment of the NIS2/DORA training requirement.
Learn moreReview of security, compliance and technical debt before an M&A transaction. ISO 27001-based risk assessment - a report for the board and the PE fund.
Learn moreISO 27001:2022 and ISO 9001:2015. The requirements we discuss with clients pass an annual audit in our own organisation.
We secure SAP environments that run finance and production. Reference project: 700 SAP users across 3 companies and 5 jurisdictions.
We work according to NIST CSF and OWASP, with reports ready for the board and the auditor.
Headquartered at Rondo ONZ 1 in Warsaw. We deliver projects on-site and remotely across the country.
Gap analysis against NIS2 and DORA, review of policies and processes according to ISO 27001, risk assessment and a prioritised remediation plan. The result is a report prepared for the board and the auditor - with a concrete list of actions, not generic recommendations.
Yes. SNOK is headquartered at Rondo ONZ 1 in Warsaw, so projects in the capital are delivered on-site. We also work across Poland - at the client site or remotely.
DORA has applied to financial entities since 17.01.2025. NIS2 covers essential and important entities - in Poland its obligations are implemented through the amendment of the national cybersecurity act (KSC). From 02.08.2026 the AI Act requirements follow. We help determine which obligations apply to your organisation and close the gaps before an inspection does.
Yes - that is our specialisation. We run SAP penetration tests (ECC, S/4HANA, HANA, BTP, Fiori, RFC), deploy SecurityBridge as SIEM/SOAR for SAP and audit licences. Few security auditors go down to the SAP layer - we started there.
It is the same competence without the cost of a full-time role. An external SNOK CISO organises security policies, runs risk assessments, oversees the SOC as well as incident and IT vendor management - scaled to the size of the organisation.