NIS2 check at SE Tylose – systematic safety assessment

SE Tylose GmbH & Co. KG – NIS2 check at SE Tylose: systematic safety testing.

SE Tylose GmbH & Co. KG is one of the world's largest manufacturers of cellulose ether – a versatile product used in construction, paints, pharmaceuticals and food. Information security plays a key role here – from the laboratory to production and logistics. In order to prepare early for the EU NIS2 (Network and Information Systems) Directive, which came into force in Germany at the end of 2025, SE Tylose relied on Bechtle's expertise and advice. The goal: to measure the level of maturity in terms of cyber security and to make all areas – from IT to production – fit for the coming requirements.

Project details.

Services

Security
Managed Services

Industry

Chemical / Extractive
Manufacturing

Company size

250 – 1,500 employees

Challenge.

For SE Tylose, cyber security is more than just an IT issue. Production facilities, supply chains, HR processes – everything depends on secure and functioning systems. In view of the new NIS2 Directive, the company wanted to know: Where do we stand today? Which areas are already well positioned? And where are there gaps? The EU's NIS2 Directive requires companies in critical industries to strengthen their cyber resilience. However, even before the directive came into force, SE Tylose knew that the first step was to conduct a complete inventory of all relevant processes, guidelines and technical measures – from firewalls to supplier evaluations. This is the only way to achieve NIS2 compliance in a targeted and timely manner.

Thanks to Bechtle, we had a really good audit for NIS2 compliance testing – structured, practical and tailored precisely to our company. The audit result confirms that we are on the right track. And it shows us exactly what we need to do next.

Matthias Werner, IT Director, SE Tylose GmbH & Co. KG

Solution.

SE Tylose relied on Bechtle's advice, as the company impressed with its expertise in IT security. The process began with a kick-off workshop involving all relevant managers. Together, they defined the scope of the compliance audit: Which departments would be included? Which interviews would be necessary? Within a few days, the process was finalised. This was followed by an on-site maturity assessment. Bechtle conducted interviews in various departments and examined how security guidelines are implemented in everyday work.

All processes – from the firewall concept and smartphone use to supplier evaluation – were systematically recorded. Each finding was documented and deviations were clearly marked as major or minor issues. This formed the basis for a comprehensive audit report: with a summary of all strengths, a transparent GAP analysis and clearly prioritised recommendations for action. Bechtle went through this report point by point with SE Tylose, explaining how the identified gaps could be closed. The result: a complete, structured overview of information security at SE Tylose and a precise roadmap for meeting all the resulting requirements before the NIS2 Directive comes into force.

Business benefits.

Comprehensive overview of all security-related areas.
Clear recommendations for action show which steps are necessary – with appropriate prioritisation.
Uniform assessment of all specialist departments thanks to a structured review process.
Clear documentation enables seamless tracking of all steps.
Concrete cost estimates allow resources and time requirements to be planned in advance.
Practical recommendations are precisely tailored to the processes and structures at SE Tylose.
Risk management methodology enables SE Tylose to identify all security risks.
Strengthening cyber resilience through targeted optimisations in technology and organisation.
Reliable roadmap leads SE Tylose safely to NIS2 compliance.