Next-Gen Security

Insights, Services and Training that protect your company and data against attacks.


About Us


Cybersecurity is important to us. Never in history have modern organizations faced so many threats as today. That is why it is necessary to protect your organization.


We are independent. Since our founding, we have been privately owned. We do not belong to any big enterprise, and we are not affiliated with any software or hardware vendor.


We are always up to date. We always keep up with the newest security trends as well as the newest threats. To future-proof your systems against the threats of tomorrow.

We deliver Security.

We help you bring your organization, infrastructure and products up to the latest security standards.

Regular reviews

We provide regular security audits to protect you from the latest threats and attacks as well as keeping your security standards high.


Boost your employees cybersecurity awareness with training from our G&R security experts.

Peace of Mind

Establishing good safety practices will give you the peace of mind you need to allow you to focus on the things that matter most.

Data security

Data is your organisation’s most valuable asset. Protecting you and your data from next-gen attacks is our top priority.

Our Services

Penetration Testing

Penetration testing involves attacks against IT systems or services with the goal of determining the actual impact of vulnerabilities when exploited.

Red Teaming

Red teaming is an attack simulation with the goal of testing the client’s detection and response capabilities.

Cloud Security

Cloud-based security strategy is the process of evaluating, selecting and implementing methods to protect cloud infrastructure from internal and external threats.

Web Application Security

Web application security is a key component of any web-based enterprise. Due to the global nature of the Internet, websites and APIs are subject to attacks from different locations and at different scales and levels of complexity anywhere in the world.

Infrastructure Security

We provide security measures to protect physical infrastructures, such as banks, data centers and power plants. Infrastructure Security does not only include protection from attacks, but also protection from natural disasters and other calamities.

Mobile Application Security

Mobile application security focuses on the software security posture of mobile apps on various platforms like Android, iOS, and Windows Phones. We provide various security services including Threat Modelling, Penetration Testing and Code Reviews/ Analysis.

IoT Security

Smart cars, smart security cameras, smart medical implants, IoT devices have become indispensable these days. This is why we provide extensive cybersecurity services for your ioT device including Threat Modelling, Penetration Testing and Code Reviews/ Analysis.

Wireless Security

Wireless security focuses on preventing unauthorized access or damage to computers or data over wireless networks, such as Wi-Fi, Bluetooth and RFID. Wireless networks are particularly vulnerable because attackers do not need to be on site to exploit.

Security Trainings

To effectively prevent cyberattacks on your company, you need the help of everyone in your organization. We train your employees to think like an attacker. Your employees can either be your greatest weakness or your greatest strength.

We are hiring!

Become part of one of the fastest growing companies in the Industry.

Our carrer offers

Latest Post

On the Security of Containerized Applications

What is a container? Containers are a more lightweight approach to virtualization. They work very similar to a Virtual Machine (VM), in the sense that they have their own file system and their own network adapters, which separate them from the host.

Read more

EU wide regulation on backdoors and obligatory E2E-encryption

The new ePrivacy Regulation (ePR) or also known as “Regulation of the European Parliament and of the Council concerning the respect for private life and the protection of personal data in electronic communications and repealing Directive 2002/58/EC (Regulation on Privacy and Electronic Communications).

Read more
View All Posts


Contact Details

Contact us for a customized quote to improve your company’s security and train your employees. All our E-Mails are signed with our public PGP Key: 33766E67AC42112AE6940B47C17A057DDEBAAA04

Gürtler & Roach Cybersecurity GmbH
Leopoldstraße 31, 80802 München, Germany
Phone: +49 89 61465283
Web presence of the Alliance for CyberSecurity