SiESTA

Intensify security testing

Why SiESTA?

SiESTA (Siemens Extensible Security Testing Appliance) is the most comprehensive security testing solution for OT/IT environments. Market-leading and in-house tools are combined on a single platform to provide a scope of service not found anywhere else on the market. The user-friendly SiESTA management console enables simple planning and automation of individually compiled test procedures, so you can quickly and regularly determine the safety status of components, solutions or entire production networks. That saves valuable time and significantly increases security.

SiESTA means more than just cybersecurity for your enterprise.

New security vulnerabilities are discovered daily while cyber-criminals develop ways of exploiting them. SiESTA allows you to carry out regular, comprehensive checks of the security status of your products and solutions as well as of your entire IT/OT network environments. You can promptly discover risks and potential hazards, and respond to attacks in a targeted manner.

  • SiESTA enables inventory management for entire production systems as well as the visualization of life cycle information.
  • SiESTA uses a variety of technologies and methods to provide a large number of different security tests with wide-ranging capabilities for detecting vulnerabilities.
  • SiESTA's user-friendly operator interface ensures simple administration and allows the customized compilation and automation of test procedures.
  • SiESTA provides clearly structured reporting that summarizes the results of all tests and gives a clear display of the security status of all devices. The result is reliable visualization of vulnerabilities and possible threats.

By intensifying security tests, SiESTA makes a fundamental contribution to the prevention of security risks and their consequences, including physical damage, a tarnished image and financial losses.

In a nutshell

SiESTA at a glance

SiESTA is not only a security tool but also an entire framework for security tests. Just imagine it as a toolbox but with an integrated automatic contractor who does whatever you tell him.

You benefit from numerous advantages:

  • Many years of experience with security testing in highly sensitive production environments 
  • In-house, proactive research into cybersecurity trends and incidents
  • Exclusive life cycle and vulnerability information for Siemens devices and products
  • Demand-oriented security tests for product development
  • Low-risk and resource-efficient scanning during ongoing operation without impairing production
  • Tight networking with the enterprise's own Siemens ProductCERT and especially its PSIRT Team (Computer Emergency Response Team, Product Security Incident Response Team)
  • Founding member of "Charter of Trust" (world's leading initiative for cybersecurity in industry)
  • Collaboration and communication with other recognized institutions in the field of cybersecurity (CIS, NIST, IEC, etc.)
Benefits

Why SiESTA is the right choice

SiESTA provides the most comprehensive range of automation-capable security tests and allows you to intensify security scans while also saving time.

Numerous advantages for many applications and users

1

Test cases

SiESTA combines commercial, OpenSource and in-house tools to form the most complete security testing platform on the market.

1

Instances worldwide

A growing number of customers are placing their faith in SiESTA. They appreciate the high level of user convenience and the impressive time-savings.

1 years

Experience with high-security environments

SiESTA was developed in critical and sensitive industrial and production environments and has been continuously optimized ever since.

Deep dive

Automation of security tests with SiESTA

Right from the very beginning, SiESTA was designed focusing on the automation-capability of security testing. The creation of a smart, centralized controlling instance and development of a proprietary evaluation tool (SiESTA Result Checker) helped to lay the foundation for plannable, repeatable and ultimately more intensive security test procedures.

Four steps to greater security:

1. Capturing your network and/or production environment

You identify and make an inventory of the objects to be tested (components, products, systems, networks,…) and enter protection classes and other parameters regarding the initial categorization for the desired scan intensity and scope.

 

2. Specifying your customized tests

From the diverse range of test functionalities, preconfigured test scenarios and your own test cases, you compile your customized test procedures to determine which objects are to be scanned with which tools.

3. Automated scanning

SiESTA automatically performs the specified security scans at the desired intervals. Integration in development pipelines such as Gitlab or Jenkins is also an option.

 

4. User-friendly provision of results

Once the test routine has been concluded, you receive an automatically created, clearly structured report containing the results of all the tests performed.

SiESTA combines intensification and simplification, individualization and automation, expansion and savings in security testing.

Contact

Do you have any questions? Contact our experts.

Let's discuss your requirements and the most suitable integration options.