Penetration TestJan Kahmen4 min read

Functionality of the TIBER-DE Framework in Detail

The TIBER-DE framework (Threat Intelligence-based Ethical Red Teaming) is an indigenous framework for simulating cyber attacks in Germany.

Table of content

The TIBER-DE framework (Threat Intelligence-based Ethical Red Teaming) is an indigenous framework for simulating cyber attacks in Germany. It was developed in collaboration with the Deutsche Bundesbank, BaFin and other players in the financial sector to improve the IT security of companies in the financial sector.
It is based on the European TIBER-EU framework created by the central banks of the Eurosystem (ESCB), but has been adapted to the specific needs of the German financial sector.
The TIBER-DE test follows a three-phase process:

1. Preparation:

  • Definition of the scope: the scope of the test is defined, including the systems, applications and data to be tested.
  • Creation of a Target Threat Intelligence (TTI) Report: A specialized threat intelligence provider creates a report that identifies the current threats to the organization.
  • Development of a Red Team Test Plan: A Red Team creates a plan that defines the execution of the simulated attacks.

2. Execution:

  • Simulated Attacks: The Red Team conducts cyberattacks on the organization's systems using various methods to identify vulnerabilities in the IT infrastructure.
  • Documentation: The Red Team documents the results of the attacks and produces a report describing the vulnerabilities and potential impact.

3. Follow-up:

  • Analysis of the report: the company analyzes the Red Team's report and develops measures to address the identified vulnerabilities.
  • Implementation of the measures: The company implements the measures to improve security.
  • Follow-up: The company checks the effectiveness of the implemented measures and carries out further tests if necessary.
    TIBER-DE tests can be carried out both on-site and remotely and take between a few days and several weeks, depending on the scope.

Advantages of Testing according to the TIBER-DE Framework

There are two points of contact for companies interested in a TIBER-DE test: The Deutsche Bundesbank and specialized providers of TIBER-DE tests. There are various advantages to carrying out such a test:

  1. Improved IT security: with the help of TIBER-DE tests, companies can uncover potential vulnerabilities in their IT infrastructure and thus strengthen their security measures to prevent external attacks.

  2. Raising awareness of cyber security risks: TIBER-DE tests help to raise awareness of cyber security risks and provide employees with targeted training on how to protect themselves against cyber attacks.

  3. Increased resilience to cyber attacks: By participating in TIBER-DE tests, companies can strengthen their resilience to cyberattacks by improving their IT systems and processes.


Overall, TIBER-DE is an important tool for increasing IT security in the German financial sector. Companies that opt for a TIBER-DE test can use it to better protect their IT infrastructure and ensure the security of their customers and business partners. Interested companies can find further information on the TIBER-DE framework on the websites of the Deutsche Bundesbank and BaFin.


Curious? Convinced? Interested?

Schedule a no-obligation initial consultation with one of our sales representatives. Use the following link to select an appointment: