EFRE-funded: Light:Guard strengthens IT security and creates the conditions for ISO 27001

Light:Guard GmbH has successfully completed its second funded digitization project with support from the European Regional Development Fund (ERDF). Between August 1, 2024, and July 31, 2025, the IT infrastructure was comprehensively modernized to increase the protection of sensitive data and lay the foundation for ISO 27001 certification.

The initial situation showed that the IT landscape had evolved continuously as the company grew. Although Light:Guard had already established demanding internal standards in the area of information security, no formal ISO 27001 certification was in place when the project started. The existing information security management system therefore provided a high level of protection, but did not yet have internationally recognized proof of certified implementation.

By modernizing its IT infrastructure, Light:Guard is ensuring that its technological basis will continue to meet the increasing demands for availability, security, and scalability in the future. Further measures and structured processes were also necessary to achieve the desired ISO 27001 certification.

The project enabled fundamental improvements to be made to the processes:

1. Increased IT security and resilience to cyber attacks

• Outdated servers were replaced with modern, high-performance systems and integrated into the existing infrastructure
• Network security was comprehensively modernized with firewalls, intrusion detection systems (IDS), and other components for actively defending against potential threats
• The network architecture was adapted to ensure data protection and system availability at all times, even under increasing demands

2. Protection of sensitive company and customer data

• For further security, existing cybersecurity solutions were renewed and modernized, including antivirus software, endpoint protection, and encryption tools
• These components increase security at the technical level and supplement the infrastructure with effective protective mechanisms

3. Preparation for ISO 27001 certification

• Specific management tools were implemented, security guidelines established, and internal processes restructured in preparation for certification
• Employees received targeted training to effectively implement the new standards
• In addition, external consultants were brought in to conduct audits and risk analyses and to ensure certification readiness

4. Strengthening the security culture within the company

• In addition to technical implementation, awareness of information security was also raised within the company.
• Workshops and training courses provided in-depth knowledge and practical skills in the secure handling of data and IT systems

Formal certification is being sought after project completion.

With the completion of the project, Light:Guard is not only strengthening its digital structures, but also contributing to technological development in the region. Targeted funding from the European Regional Development Fund has enabled a sustainable step toward greater digitalization, information security, and future viability.