Review: 10th TeleTrusT IT Security Law Day 2025

October 2, 2025

TeleTrusT hosted the IT Security Law Day for the tenth time. The annual event provides an interdisciplinary platform for discussing current topics from a legal, technical and political perspective. Participants from companies, public institutions, research institutions and authorities had the opportunity to learn about the current legal situation, discover practical implementation options and establish valuable professional contacts.

Under the motto ‘Between war and peace – uncertainty at every level’, John Reyels from the Foreign Office opened the event and outlined the security policy framework that is increasingly influencing companies and institutions. Dr Alexandra Paulus from the German Institute for International and Security Affairs then highlighted the challenges of dealing with military software supply chain risks and emphasised the need for preventive measures in critical sectors.

The role of law and advocacy in resilient digitalisation was addressed by Karsten U. Bartels LL.M., deputy chairman of TeleTrusT and head of the TeleTrusT working group on IT security law. He advocated resilience consulting that goes beyond mere compliance and enables companies to act more effectively.

Current regulatory developments, including NIS2UmsuCG and the KRITIS-DachG, were presented by Dr Daniel Meltzian and Marieke Nielsen from the Federal Ministry of the Interior, who gave a practical overview of implementation obligations and risks for operators of critical infrastructures.

Under the title ‘AI as a test subject – IT expertise meets system intelligence’, Prof. Dr.-Ing. Stefan Wagenpfeil highlighted the requirements for assessing artificial intelligence from an IT security perspective and presented practical testing methods.

On the topic of software and product liability, solicitor Dr Carsten Brodersen explained the importance of IT security requirements as a benchmark for errors and liability. In addition, solicitor Dr Julian Zaudig addressed the risks for business managers, IT managers and CISOs in dealing with regulated IT security and pointed out ways to secure safe havens.

The event was expertly moderated by Nina-Sophie Sczepurek from leitzcloud and combined technically sound presentations with interactive discussion rounds.

All presentations and pictures from the event are available on the TeleTrusT website: www.teletrust.de/veranstaltungen/it-sicherheitsrecht-und-dsgvo/it-sicherheitsrechtstag-2025

Related Articles

Drone defence: Legal clarity becomes a key factor

Drone defence: Legal clarity becomes a key factor

The threat posed by drones to critical infrastructure (KRITIS) and businesses continues to grow. Airports, power stations, industrial and chemical parks, and the production and office sites of medium-sized companies are increasingly the focus of surveillance and...

Certificates of good conduct for external service providers

What security managers need to consider In data centres, building security or the operation of critical infrastructure, trust in the personnel employed is crucial. Companies are therefore increasingly considering whether they can require external service providers to...

Share This