FAQ Domain Cyber Check for SMEs
Benefit and scope
- The service was developed especially for SMEs.
- Larger companies, which generally employ specialists such as a Chief Information or Chief Security Officer, will not gain the same added value from the Domain Cyber Check since they already have their own experts and security architecture in place.
- The check will be of less benefit to globally complex companies that work with a large number of independent domains or those that have a long list of subdomains not hosted by the companies themselves.
- The Domain Cyber Check only analyzes information that is accessible to the public on the Internet and always remains before the firewall.
- The Domain Cyber Check is an analysis tool, not an advisory tool. It provides a large number of facts, but does not offer instructions or recommendations on how to resolve any vulnerabilities found.
- Internal processes within the company are not recorded. Gryves offers a Business Basic Cyber Check for this purpose, which enables an assessment to be carried out behind the firewall.
- The report generated during the check is the first step toward enabling your IT service provider to resolve potential vulnerabilities in a targeted and effective manner.
Costs and order process
- If you apply for the DOMAIN CYBER CHECK via the UBS website, you only pay CHF 180 instead of CHF 250. Payment is by credit card.
- If you want to use a special offer code, please enter the code at the start of the payment process.
- Click on the link at the top of the page that takes you to the check. You will be asked to enter details about your company (name, domain, e-mail address, country of domicile, sector and size of the company).
- Thanks to a 2-factor authentication process that includes sending out an e-mail, Gryves ensures that no unauthorized parties can access information about your company.
- Once you have entered your credit card details and paid for the check, the assessment process will begin and the results will be displayed within minutes. The full report can be downloaded as a PDF file.
Service provider Gryves
- Gryves is an owner-managed, independent company that specializes in cyber risk management.
- Gryves is 100% independent of UBS. UBS simply provides a link to the Domain Cyber Check offered by Gryves as one of many possible options that allow SMEs to gain a better overview of their cyber security. No data is exchanged between the two parties.
- Over the years, the number of cyberattacks on SMEs has steadily increased. Together with Gryves, UBS is seeking to raise awareness about the topic of cyber security in order to protect the Swiss digital SME ecosystem at an early stage.
- The check is restricted to information available to the public via a company domain, and only finds information before the company’s firewall. Taking this limitation into account, the basis of the check meets methods and standards that are accepted worldwide:
- ISO 27000ff: https://www.iso.org/isoiec-27001-information-security.html
- NIST Cybersecurity: https://www.nist.gov/topics/cybersecurity
- Nato Cyber Defence Centre: https://ccdcoe.org/
- In addition to these publicly accessible standards, Gryves applies a European defense ministry cyber standard that is not accessible to the public.
Data protection
- The report generated during the check can only be downloaded again by the company itself using its own access data (e-mail address and password). This can be done at any time.
- Gryves complies with the strict requirements of Swiss and European data protection legislation.
- 2-factor authentication is used to stop former employees from accessing an account. This involves sending an e-mail to the registered e-mail address. In general, a former employee no longer has access to their previous e-mail account. This ensures that no further information can be requested.
- To order a report, the domain and the e-mail address must match. This means that no GMX or similar addresses can be used, for example.