Among other things, the latest figures shed light on how C-level managers assess the relevance of cybersecurity in their own company against the backdrop of the increasingly dynamic threat situation posed by cyberattacks. The study was conducted for the third time by market research institute Ipsos on behalf of Sophos and follows on from the surveys conducted in 2022 and 2024.

Cyber protection is established - and remains important

A key finding of this year's study is that cyber protection is now firmly established as a strategically relevant topic for the vast majority of companies. When asked how the increasing headlines about state-organized cyberattacks influence their view of cyber protection, more than half of the respondents in Germany (56%) stated that the high media presence has not changed their view, for the simple reason that cyber protection has always been an important factor in corporate management. A similar view was expressed by 64% of respondents in Austria and 58% in Switzerland.

The results are consistent with previous years of the study: in 2024, 55% of German companies, 46% of Austrian companies and even 60% of Swiss companies rated cyber security as "very important" for their business relationships. In 2022, 32.3% of companies in Germany, 37.3% in Austria and 47.1% in Switzerland had already confirmed that the relevance of IT security had increased further. The long-term importance of the topic is thus clearly documented.

Nevertheless, the threat situation is causing uncertainty

Even though cyber protection is firmly established in corporate strategies, the latest figures show that the increasing media presence of state-sponsored cyberattacks is not leaving management unscathed. In Germany, 27.5 percent of managers feel unsettled by the headlines, in Switzerland the figure is 30 percent and in Austria it is as high as 36 percent. This shows that Concern in the face of sophisticated, partly state-sponsored attackers has reached the boardroom. And it is obviously heightening security awareness.

Increasing investments and growing demands on partners

Many companies have already responded to the more complex threat situation and invested in their cyber security measures. In Germany, 47 percent of the companies surveyed have expanded the protection of their IT systems in the past, in Switzerland 48 percent and in Austria as many as 60 percent.

In addition to internal measures, there is also a greater focus on external protection. However, the requirement for cyber security measures for business partners - i.e. in the supply chain - is currently still less present. Some companies have started to increase the requirements for their business partners within the supply chain. In Austria, 36 percent of companies have raised the requirements for their business partners within the supply chain and introduced corresponding standards, in Switzerland 22 percent and in Germany 16.5 percent. This clearly shows that cyber security is increasingly seen as a joint task, even across company boundaries.

"Cybercriminals are increasingly targeting the supply chain to infiltrate secure systems by taking advantage of smaller, less well-equipped suppliers and partners," comments Michael Veit, security expert at Sophos. Security expert at Sophos, commented on this development. "To ensure business continuity and protect increasingly complex and interconnected IT infrastructures, organizations need to develop and implement effective cyber security strategies and best practices. This requires collaboration not only with third-party vendors, but also with cybersecurity experts who can provide tailored solutions, advice and support to create the technical framework needed to protect the entire ecosystem and ensure regulatory compliance."

On everyone's lips: Few think the cyber security debate is exaggerated

Despite the omnipresence of the topic, some of those surveyed consider the discussion about cyber security to be exaggerated. However, this opinion is only expressed by a minority of managers: in Germany, only 10.5 percent of respondents hold this view, in Switzerland 6 percent and in Austria only 4 percent. The results underline the fact that the majority of managers are treating the issue with seriousness and foresight.

About the survey

On behalf of Sophos, Ipsos surveyed 200 C-level managers from various industries in Germany and 50 each in Austria and Switzerland on the topic of IT security in their companies in spring 2025.

Source: www.sophos.com

The Swiss Cyber Security Days (SCSD) will take place on February 18 and 19, 2025 at the Bernexpo site in Bern and will show why cyberspace and new technologies are among the greatest challenges of our time. The speakers come from the fields of science, research, defense, administration, business, media and civilian life.

With her enthusiasm and great commitment, former FDP National Councillor Doris Fiala played a key role in shaping the format of the event. "The SCSD was a matter close to my heart," says Fiala. "Our goal was always to organize a relevant event in this urgent area. Today, I am proud to say that we have succeeded. After five years as President, the handover to my esteemed colleague Gugger feels right and good".

Doris Fiala will be succeeded by EPP National Councillor Dr. h. c. Nik Gugger, the "greatest bridge builder" in the Swiss National Council (CH Media 2021). With his digital expertise, social commitment and national and international network, he is the ideal candidate for the SCSD presidency. Nik Gugger is a member of the Foreign Affairs Committee of the National Council, part of the Swiss delegation to the Council of Europe, President of the Swiss-Indian Parliamentary Friendship Group and Co-President of the Swiss-Ukrainian Parliamentary Group. "Many of the big issues of our time are digital," says Gugger. "We are setting the course for tomorrow today. I am delighted to be at the forefront of ensuring that we can move independently and securely in the digital space."

Source: www.scsd.ch

Focus on cyber security: the role of quality management

The new NIS2 directive makes it clear that cyber security no longer only affects the IT area, but the entire organization. This means that QM plays a central role when it comes to cyber security. Data integrity and controlled access to information protect against production downtime and ensure the quality of products and services. NIS2 now requires companies to effectively anchor cyber security in their structures and establish comprehensive risk management.

Cyber security benefits from systematic QM

A systematic QM system can improve cyber security in several ways. With its standardized, transparent documentation of processes, it helps to identify weak points in existing procedures - potential gateways for cyber attacks. Regular checks and audits for continuous improvement in QM can also be applied to security precautions. Risk management, also a key QM component, enables specific risks of cyber attacks to be systematically identified and assessed, for example in the IT area. QM also emphasizes the transparent documentation of processes and measures. This can be extended to all security-relevant processes in order to document them in a comprehensible manner and define measures and procedures in the event of cyber attacks. Finally, ongoing employee training is anchored in the QM. With regard to cyber security, employee awareness of security risks is increased through training.

Integrated cyber security with ConSense software

The software solutions from ConSense GmbH offer valuable support in establishing cyber security as an integral part of quality processes and preparing companies for the NIS2 requirements. They are suitable for setting up accepted and practised QM and integrated management systems that are characterized by transparent structures and clearly defined access rights. They promote the cross-departmental flow of information and thus simplify the company-wide implementation of cyber security measures. The ConSense software already offers companies integrated requirements catalogs and templates, for example for TISAX or for certification in accordance with CISIS12.

ConSense: Experienced partner for IT security

ConSense GmbH supports companies with its extensive expertise in the implementation of complex topics such as cyber security and risk management. With the highest IT security standards, its own CISIS12 certification, server locations in Germany and high data integrity, the Aachen-based software company offers solutions that ensure transparency and stable structures. Companies benefit from a holistic concept: the powerful software solutions are used as a quality or integrated management system. With numerous modules and extensions, an individually adapted, lively and accepted management system is created. Comprehensive services support ongoing operations, including consulting, training and exchange in an active community.

Source: www.consense-gmbh.de

The editors of the study see many challenges in Switzerland's federalist system, but also cite opportunities. For example, the small-scale administrative structure in Switzerland offers scope for flexible, innovative solutions. 

The study published on November 6 shows that smaller municipalities in particular face hurdles when trying to manage the digital transformation on their own. Collaborations such as cross-municipal networks are therefore forward-looking in federalist Switzerland. For Mattia Balsiger, project manager at digitalswitzerland, one thing is clear: "Partnerships at municipal and cantonal level make it possible to implement the digitalization of the administration in a cost-effective, efficient and high-quality manner. This is becoming increasingly important in view of the federal government's planned cost-cutting measures and the ongoing pressure to digitalize." 

Best practice examples give cause for confidence 

The authors of the study are convinced that Switzerland is already strategically well on the way to efficient and practical eGovernment. This thesis is underpinned by concrete examples from cities and cantons that show how citizen-centric digitalization works.

The study was conducted jointly with the cantons of Aargau, Schwyz and Schaffhausen, Swiss Post and the cities of Lausanne, Lucerne, Bern and Lugano. The results provide concrete recommendations for action and are in line with the objectives of the 2024-2027 strategy of the Swiss Digital Administration (DSA).

The study, the regional case studies and a guideline derived from them can be found download here. 

Source: www.digitalswitzerland.com

SMEs would even have until June 2026 to prepare for the extensive requirements. From the date of entry into force, companies that import raw materials such as palm oil, cocoa, soy, wood and rubber into the EU or sell them within the EU will have to provide strict proof of the origin of their products. Swiss companies that export their products to the EU are also affected and must prove that their raw materials and products do not violate the EUDR. This increased need for information presents supply chain management with a complex task. This is because the collection and maintenance of such data significantly increases the administrative requirements and demands the introduction of digital tools and processes to efficiently ensure compliance and documentation.

Increased compliance requirements and risks for Swiss exporters

The EUDR places high compliance requirements on Swiss exporters in order to ensure the required deforestation-free supply chains. Companies must not only provide geographical evidence down to the raw material source, but also ensure that their suppliers meet the EUDR requirements. "The new regulation poses considerable challenges for SMEs in particular, as they are often dependent on compliance and the provision of precise evidence by their foreign suppliers," emphasizes expert Patrick Sommer.

This can be particularly risky for Swiss companies that source raw materials from third countries, as they are dependent on their foreign suppliers providing precise evidence. This is because violations of the EUDR could result in sanctions and possible exclusion from the EU market - a significant risk for SMEs that rely on exports to the EU. The documentation and control effort also increases considerably, which ties companies to new human and financial resources. Integrating these requirements into existing processes is therefore a challenge that requires not only efficient monitoring solutions, but also data collection.

SAP Ariba: An integrated solution for implementing EUDR requirements

In order to meet the complex requirements, many Swiss companies specifically rely on IT systems such as SAP Ariba. "SAP Ariba is a powerful tool that supports companies in digitizing their entire supply chain and systematically documenting the origin of raw materials. The platform helps to capture the necessary geographical data and implement automated processes that simplify management and compliance with regulations," explains the Head of Consulting at CNT Management Consulting.

In addition, integrated risk analyses offer the opportunity to identify potential violations at an early stage. SAP Ariba's comprehensive supplier database enables companies to carefully select suppliers and check their sustainability standards. In this way, companies can ensure that they meet both the new legal requirements and the expectations of their customers.

EUDR as an opportunity for sustainable market positioning

Although the strict requirements of the EUDR present Swiss companies with challenges, they also offer strategic opportunities to position themselves as sustainable and responsible partners. "By using SAP Ariba, companies can strengthen their credibility in terms of environmental and social responsibility. At the same time, the platform makes it possible to efficiently manage parallel regulatory requirements and avoid duplication of effort," explains the expert. The combination of digital transparency and sustainability not only strengthens positioning in the market, but also leads to greater customer loyalty and a long-term competitive advantage. This turns the implementation of the EUDR from a challenge into an opportunity that companies can use to optimize their processes and achieve sustainable market positioning.

Source: www.cnt-online.com

The need for sustainability today is undeniable. The impact of industry on the environment, communities and individuals can no longer be ignored, and all stakeholders - from regulators to consumers - want to see positive action on climate change, biodiversity loss and social impact. SGS is answering this call with Impact Now for sustainability.

SGS recognizes that every organization is at a different stage of their sustainability journey. Whether they are just starting out or looking to optimize their existing sustainability initiatives, Impact Now for Sustainability offers tailored solutions to help clients achieve their specific sustainability goals.

Impact Now for Sustainability consolidates SGS's sustainability offerings under four strategic pillars: Climate, Circular Economy, Nature and ESG Assurance. Through these pillars, SGS offers reliable compliance solutions that directly help organizations address the key environmental and social challenges affecting our planet:

• Climate - reducing greenhouse gas emissions and the energy transition at zero cost
• Circular economy - reducing plastic pollution and enabling the circular economy through sustainable design, material optimization, recyclability and effective waste management
• Nature - environmental risk management, including contamination (PFAS, microplastics, etc.) to mitigate biodiversity loss and ecosystem degradation
• ESG assurance - aligning capabilities and strategies with regulatory requirements and business objectives to ensure accountability, accuracy and consistency in ESG disclosures

With new regulations mandating ESG disclosures and the increasing importance of sustainable processes and products, Impact Now for Sustainability provides a comprehensive platform where companies can find the customized solutions they need to improve sustainability and meet compliance requirements.

Géraldine Picaud, CEO of SGS, said: "Impact Now for sustainability is more than just a concept. We are addressing the triple planetary crisis of climate change, biodiversity loss and pollution and waste. By incorporating sustainability into every action we take and every service we provide, we are making a positive contribution to society and to the realization of a nature-friendly and environmentally friendly world."

Source and further information: www.sgs.com

One in five cyberattacks in Switzerland targets the financial industry. In its supervisory communication in June of this year, FINMA had already put its finger on the sore point that some financial institutions were not monitoring their information and communication technology promptly and systematically and that in some cases critical log data was only evaluated during office hours. 

Reto Zeidler, Cyber Security Cluster Leader at Inventx, says: "Making employees work through the night is not only unhealthy, but also unpopular with experienced specialists. The challenge is to ensure FINMA compliance and at the same time offer the required talent attractive work and development opportunities."

Inventx has therefore switched its Cyber Resilience Center to a "Follow the Sun" operating model since 1 September, which guarantees round-the-clock security monitoring. "24/7 Eyes on Screen" means uninterrupted manned monitoring, including at night and on weekends and public holidays, which is made possible by seamlessly linking the Switzerland-based ix.CyberResilienceCenter with a location in Vancouver, British Columbia/Canada, which is also operated by Inventx itself. This location offers ideal conditions in terms of the required data protection standards in a complementary time zone. The close economic ties between Switzerland and Canada also facilitate the secondment of employees from Switzerland.

 Inventx is therefore one of the very few providers on the Swiss market with an end-to-end "Security Operations Center as a Service" (SOCaaS).

With the efficient round-the-clock operation and corresponding immediate response options, Inventx customers can better meet strict compliance with legal and regulatory requirements and customer protection is increased. The model also strengthens Inventx's attractiveness as an employer, giving sought-after security talent in particular the opportunity to gain experience abroad and advance their personal development.

Source: www.inventx.ch

Job-related aptitude diagnostics is a professional field in which both psychologists and HR specialists work. Their task is to find suitable candidates for a vacant position. As of today, the new Swiss standard supports the relevant specialists in this process. After all, those who use scientifically sound procedures and methods not only achieve a significantly higher hit rate when recruiting new staff, but also generally find people who stay with the company for longer.

What is a standard?

The application of standards is generally voluntary. Unless, for example, they are the subject of contracts between two parties, they are binding. Standards are written by users for users on a voluntary basis. The industry itself decides which standardization it considers necessary and useful.

SN 33430 - the new Swiss standard

The new Swiss standard describes how personnel decisions are prepared, assessments are carried out and suitability-relevant information is evaluated. It is based on the German standard of the same name. The FSP has revised the German standard together with the Swiss Association for Standardization (SNV) and renowned experts from science and practice.

Experts involved (in alphabetical order):

• Dr. Patrick Boss, ZHAW Applied Psychology
• Annick de Buman, Federation of Swiss Psychologists (FSP)
• Dr. Benedikt Hell, FHNW, School of Applied Psychology
• Daniel Jungo, Swiss Society for Career and Personnel Psychology (SGLP) and Swiss Service Center for Vocational Training / Vocational, Academic and Career Guidance (SDBB)
• Michael Platen, Aequivalent SA
• Sabine Sauter, Swiss Society for Industrial and Organizational Psychology (SGAOP)
• Ruth Schneider, Swiss Association for Standardization (SNV)
• Sébastien Simonet, Federation of Swiss Psychologists (FSP)

Quality assurance and quality development

The FSP is convinced that the introduction of the standard in Switzerland will ensure high standards in the field of occupational aptitude diagnostics. The standard requires comprehensive knowledge and experience from people who are involved in occupational aptitude diagnostics in various functions. The standard can also be used as a guideline to further develop existing processes in companies and thus continuously improve the quality of work.

Acquisition of the standard

The standard can be purchased via the SNV website. The standard is currently only available in German. It is currently being translated and is expected to be published in French at the beginning of 2025.

Source and further information: www.snv.ch

Four years ago, mobilezone founded the jusit brand for used, tested and refurbished smartphones, offering its customers a sustainable alternative to a new device.

Roger Wassmer, CEO of mobilezone Switzerland, is delighted with the success of jusit: "With jusit, we have created a unique sustainable brand on the Swiss market: from taking back from our Swiss customers to refubishing on site in Rotkreuz and reselling online and in the mobilezone stores, we cover the entire value chain in-house and thus in Switzerland."

The successful model is also reflected in the figures: from January to August 2024, 7.7% of all smartphones sold by mobilezone Switzerland were second-hand. This is almost double the figure for the same period last year. Mobilezone is responding to the growing demand for refurbished smartphones and will be equipping around one hundred stores in Switzerland with the jusit range by the end of 2024. This will give customers even more opportunities to inspect and buy the devices directly on site. In addition, mobilezone is making the range of jusit smartphones even more attractive: the devices can also be purchased in a bundle with a subscription from Swisscom, Wingo, TalkTalk and now also with Salt. The most popular and therefore best-selling refurbished devices from jusit in the current year include the iPhone 13 and iPhone 12 from Apple and the Samsung S23 Ultra.

The jusit smartphones mainly come from mobilezone's trade-in program: customers can return their used smartphones to any mobilezone store or have them valued online and send them to mobilezone by post. Certified technicians erase the data, check the devices and refurbish them at their repair site in Rotkreuz in the canton of Zug using only original spare parts.

Jusit as a central part of mobilezone's sustainability strategy

The mobilezone Group has had a sustainability strategy in place since 2020 - jusit is an important part of this strategy. By remanufacturing devices, their life cycle is extended and raw materials and emissions that would otherwise be extracted or emitted for the production of a new device are saved. This contributes directly to mobilezone's CO₂ targets. For 10 years now, mobilezone has been taking back smartphones that are no longer used but are still in working order.

Source: www.mobilezoneholding.ch

MediCongress celebrates its premiere: on October 29, 2024, the first Communications Summit took place in Zurich. The congress is aimed at marketing and communication experts from the healthcare sector and provides new insights into healthcare communication. "The large number of visitors to the first Communications Summit showed just how much interest there is in forward-looking healthcare communication. We are delighted that so many healthcare professionals attended and that together we can take communication in our industry to a new level," said Joel Brandenberger, member of the Executive Board of MediCongress.

Storytelling, content and future prospects

The speakers took the visitors on a journey into the world of modern healthcare marketing. Communications and media expert Ferris Bühler opened the day with a presentation on storytelling, which illustrated how vivid stories can strengthen patient trust. This was followed by practical insights into content marketing, in which strategies for authentic and targeted content were presented. Google Director Britta Fleck gave the audience a glimpse into the future of AI-supported advertising, and additional presentations focused on how AI and integrated CRM tools can make campaign development and customer loyalty more efficient.

Corporate culture and crisis management

After an inspiring networking lunch, Dietmar Dahmen, the charismatic founder and CEO of Dietmar Dahmen Brainkicks GmbH, opened the afternoon session with a gripping introduction: "The future and change are happening - whether we like it or not. Our task is not just to keep pace, but to drive and actively shape change," said the innovation expert. Further presentations on corporate culture, employer branding and merger branding rounded off the program. Mathias Ebneter and Guido Marsch from IT service provider Netsafe concluded the event with a case study on cyber attacks, which showed how targeted communication can defuse a crisis.

With comprehensive communication topics, MediCongress offered a varied program at the first Communications Summit that addressed current challenges in healthcare communication. Now it is up to the participants to integrate the newly acquired knowledge into their everyday work and thus contribute to the further development of healthcare communication.

Source: www.medicongress.ch

Caspar van de Ven took up his position as media spokesperson at Suva in Lucerne in mid-October 2024. In the Suva newsroom, he will focus on managing media activities and inquiries in the areas of prevention (occupational and leisure safety) and health protection.

Suva's media desk is now complete again and is made up of the following people: Simone Isermann (focus on finance and strategy, claims management and rehabilitation), Caspar van de Ven (focus on occupational and leisure safety), Nadia Gendre (focus on French-speaking Switzerland) and Regina Pinna-Marfurt (focus on Ticino). 

The 38-year-old previously worked as a journalist for ten years. At Radio Pilatus, Tele 1 and PilatusToday, Caspar van de Ven worked as an editor, producer, newsreader and daily manager. He completed a diploma in journalism and a course in editorial management at the MAZ, Institute for Journalism and Communication, as well as further training in media relations.

Source: www.suva.ch

Logistics service providers and shippers such as global freight forwarders and multinational manufacturers from the automotive, retail, consumer goods and FMCG (Fast Moving Consumer Goods) industries express these concerns in the Strategic Radar survey:

• Over 51 percent see the tightening of compliance as the biggest challenge in international trade
• 58 percent do not have the necessary skills and resources to deal with this effectively
• 45 percent turn to specialists for Customs & Trade Solutions because they are dependent on external expertise

This representative survey was conducted by the Customs Support Group (CSG), the European provider of Customs & Trade Solutions. Other challenges cited were geopolitical disruptions and the impact of AI.

 Unsure about compliance issues. What to do?

"Companies involved in international trade share a common concern: the fear of risk associated with breaching complex and ever-tightening regulations," says John Wegmann, CEO of Customs Support Group. "These concerns highlight the importance of customs expertise in international trade. Despite advances in automation, clients continue to rely on our expertise to manage critical customs issues."

Another reason for outsourcing is access to more advanced digital solutions. These improve efficiency and data accuracy. As customs processing is still paper-intensive, manual and error-prone, 42% of respondents also emphasized the importance of new technological solutions. Many see AI as an important way to improve automation and efficiency - but only in conjunction with human expertise in customs and trade.

Source: www.customssupport.com